On Wed, May 20, 2015 at 4:07 PM, Burton, Ross <[email protected]> wrote: > > On 20 May 2015 at 16:02, Laszlo Papp <[email protected]> wrote: >> >> On a second thought: is even worse now than that, our code has to >> handle _three_ different scenarios: >> >> 1) Desktop. >> 2) Embedded without Yocto or embedded with old Yocto. >> 3) Embedded with new Yocto. >> >> I do not get excited about this. > > > Do as the documentation says in your distro and you have one scenario.
That means compromising security. I am now looking for the ideal case in the future. What is wrong about dropping the privileges in busybox for undedicated processes without creating this separation? That would combine the convenience with security, wouldn't it? -- _______________________________________________ Openembedded-core mailing list [email protected] http://lists.openembedded.org/mailman/listinfo/openembedded-core
