On 7/21/16, Ted Unangst <[email protected]> wrote: > patrick keshishian wrote: >> Hi, >> >> Quick question about Theo de Raadt's "Presentations: dotSecurity >> 2016"[1]. Slide 11 says "Most violations result in process being killed", >> not all violations? >> >> Just wanted clarification here. > > If you look at kern_pledge.c, you'll see a couple instances where EPERM is > returned instead of killing the process.
Thank you
