On 2/24/21 2:44 PM, Stuart Henderson wrote:
The pledge isn't ready yet, it has "stdio getpw inet dns rpath proc id" but from a quick glance at docs, it writes files if configured (access_log, error_log, pidfile), and there are some things using unix sockets. Typically with a configurable program, pledge would be done (or ratcheted down) after parsing config and figuring out what is needed (I guess it can get rid of rpath in some cases too if you do that; one of the really big wins from pledge is denying file access to processes that also have internet access).
Would you suggest adding "wpath, unix", so we have a basic pledge rule (better than nothing), then try to see how they can be removed with a config parser? At the moment, I don't think the current config parser can do that.
smime.p7s
Description: S/MIME Cryptographic Signature
