The proposed variant is based on environment variables... I certainly didn't propose that, and I don't think anyone else did either. I did describe the Domain/OS system, which uses environment variables, but I also pointed out that the security model on a typical unix-like system would require some other mechanism.