EDIT I am interested are you downvoting because you (1) think I am wrong, or (2) don't like that it contains adverts, or (3) don't mind it containing adverts and think that this is irrelevant?
> why I am opposed to ANY govt funding of science. Its not a proper function of govt.
So who should fund science? Industry? They won't fund any science. They will fund research into engineering and technology. But they won't fund basic science. Furthermore expecting industry funded research to be unbiased is like expecting turkeys to vote for a second Christmas.
When any theory has to add more and more complexity to explain the data it tends to be an indication that there is something wrong with the theory and that another theory may be more supported.
Neither is a browser runtime. I would even say running code in a browser could be more dangerous, because you have a huge complexity (HTML+JS+Network Stack+3D Engine+kichen sink in modern browsers) and thus a large attack surface. Whereas if you built an isolation layer around a OS process (or bytecode), you can restrict the code to do only what it has to (render to audio and video buffers), and you have to audit the wrapper (sandbox/VM/runtime), which is much smaller than the whole browser.
The reason browsers are relatively safe now is that so many brilliant people are working really hard on them, not because they are inherently safe.
Except when you over-localize. It really annoys me when I am away for the weekend and my calender thinks all my appointments are an hour later/earlier than they actually are.
You exaggerate, but only slightly. Whatever the theoretical properties of the windows security model, it's a failure of usability, and that means most of the time none of it gets used.
Windows is not alone in this, SELinux suffers from exactly the same problem.
> Every piece of software should run within a sandbox
I sort of agree with this but I think more in terms of projects/activities (e.g. casual media consumption, banking, working on different projects) rather than applications. To do different activities I need different combinations of tools but often the tools overlap. For example I want to sandbox the browser I use for watching cat videos on youtube from the browser I use for banking from the various browsers I use for work. So that some drive by on a casual browsing site can't attack my banking. But I don't want two browsers installed I want the same program in the same version with some common and some different config - but I don't want to manage the common config in 5 different places.
The multi-user model allows for some attempt at this if one sets up multiple user accounts for the different activities. It certainly isn't sufficient but I'm not sure that sandboxing each application will actually get us there either.
I've been thinking about this many times before and while I want to like the idea, I always come to the conclusion that multi user setups sharing "some" data easily becomes too complex for users to handle.
Your example of the browser for example, how do you know what is common config? What if changing a common config in cat-mode exposes a security vulnerability in bank-mode? And are you really going to log out of cat mode into common mode just to change a small setting?
Sharing files is another one of my favorites, say for example that me and my brother like the same music and share one computer with different log ins. We want to save space on the hard drive so we share all our mp3 with each other. But I might have some music or recordings I dont want to share, how should I handle that.
Windows XP tried very hard to get this working, for example your desktop and start menu was a blend of what was installed as a shared application (remember "install for all users/only for me"?) and what was installed for one user. Later if someone renamed things on what they thought was their desktop it would be renamed on everybody else's desktop also, it was very confusing even for me as a developer who knows how it works. Windows also has the concept of a dedicated shared folder and possibility to share additional folders, sounds so simple but I've never seen anyone set it up smoothly. Everything looks so good and simple on paper but requires just a tiny bit of user education and that's where the whole concept falls.
In the UK basic level the English language exam sat by all 16 year olds did used to do this to some limited extent (you were given an advert and had to analyse it in terms of how it tried to persuade you etc).
EDIT I am interested are you downvoting because you (1) think I am wrong, or (2) don't like that it contains adverts, or (3) don't mind it containing adverts and think that this is irrelevant?