patrick keshishian wrote: > Hi, > > Quick question about Theo de Raadt's "Presentations: dotSecurity > 2016"[1]. Slide 11 says "Most violations result in process being killed", > not all violations? > > Just wanted clarification here.
If you look at kern_pledge.c, you'll see a couple instances where EPERM is returned instead of killing the process.
