15:56:31jcowanNo one who believes in "least privilege" will ever have any interest in CLOSOS.
16:01:01jcowanI have satirized what it would be like to live in a least-privilege world: you wouldn't, for example, have any identifying information about your life partners, since you have no need to know that.
16:01:09shka_not sure what is the context of the above statements...
16:03:11jcowanthey are all about using every possible means to make sure that no program has access to anything it doesn't absolutely require access to.
16:03:25jcowanfiles, sockets, other machines, etc.
16:03:39jcowanIn that context, "kill and restart" is indeed the right approach to recovery from failure.
19:28:52Bikei'm going to have generate-ast take an extra ast argument for the dynamic-environment, but leave it optional, so that a semi sane result will still happen for users that don't care (e.g., for things other than compiling)
21:35:10Bikeokay, next problem: the way call-with-variable-bound is generated screws everything up
21:35:20Bikei think i'll have to like, manually bind a bunch of dynamic environments