Hi, On Tue, Jan 01, 2019 at 09:31:29PM +0000, Edd Barrett wrote: > Gah, you're right! > > There's no need to unveil /etc/resolv.conf or /etc/pwd.db. > > ...
> It turns out DNS is not required at all! So that's why it was working > when I was testing. > > I also realised that none of 'tmppath', 'wpath' or 'cpath' pledges are > required either. > > This brings us to the diff below. Anything else fishy? Has anyone else had a chance to look at this now that Theo's comments are (I think/hope) addressed? I'm not looking for OKs, but if it "looks good", I'd like to discuss the changes with upsteam. Cheers -- Best Regards Edd Barrett http://www.theunixzoo.co.uk
