The unveil man page is perfectly correct and it is not hard to test it's 

I just wonder if it may aid unveil adoption in languages other than C, if it
explicitly mentioned that exec is not required on a dir to allow reading the
files within, e.g. if the dev is more used to filesystem permissions than OS

Perhaps a FAQ on unveil is intended instead, time permitting? Perhaps a link to
the following paper or whichever best demonstrates usage, could be added to the
faq for now?

Trying to help provide differing perspectives and not just create work for 

Feel free to ignore me, obviously.

Reply via email to