One perspective is to think of these as things that a modern OS should provide a... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		dekhn on Feb 8, 2025 \| parent \| context \| favorite \| on: VSCode’s SSH agent is bananas One perspective is to think of these as things that a modern OS should provide as a standardized feature, and VSCode is just working around the fact they don't exist. It's crazy to think about but the kernel itself could have a webserver (or other protocol) with encryption and auth that let you directly control the entire machine through EBPF. It could be an entirely different paradigm for client/server remoting. Also a security hole you could drive a death star through.

eru on Feb 8, 2025 | [–]

You can have a standardised feature set, without sticking everything into the kernel.

I'm all for the former, but the latter is unnecessary.

otabdeveloper4 on Feb 8, 2025 | [–]

A rootkit built right into the kernel? And apparently this is okay because it's "encrypted"? (Aka impossible to diagnose or monitor.)

Yikes.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact