On 20 May 2015 at 17:09, Laszlo Papp <[email protected]> wrote: > On Wed, May 20, 2015 at 4:07 PM, Burton, Ross <[email protected]> wrote: >> >> On 20 May 2015 at 16:02, Laszlo Papp <[email protected]> wrote: >>> >>> On a second thought: is even worse now than that, our code has to >>> handle _three_ different scenarios: >>> >>> 1) Desktop. >>> 2) Embedded without Yocto or embedded with old Yocto. >>> 3) Embedded with new Yocto. >>> >>> I do not get excited about this. >> >> >> Do as the documentation says in your distro and you have one scenario. > > That means compromising security. I am now looking for the ideal case > in the future. What is wrong about dropping the privileges in busybox > for undedicated processes without creating this separation? > > That would combine the convenience with security, wouldn't it?
We already do that. Since June 2002. version 0.60.4 -- _______________________________________________ Openembedded-core mailing list [email protected] http://lists.openembedded.org/mailman/listinfo/openembedded-core
