> On 16 nov. 2017 =C3=A0 22:15 +0100, Theo de Raadt <deraadt=40openbsd.org>, > wrote: > > > On Linux, I'm really not sure that a channel returned by socketpair > > > would ensure confidentiality > > > > Huh? Why not? > > > /proc/pid/fd
I'm speaking more generally that a socketpair is safe amongst it's uid, except for root. There is such thing on OpenBSD. And it doesn't matter. If you have another uid that can read it, you're screwed. Inventing crazy shit is pointless. Someone just attaches to the process earlier. So much pointless overdesign to compensate for bad decisions before privsep became well known.
