Ugh! :\ You're right, and that sysctl is not allowed by pledge(2).
Please disregard this diff.
On 18:00 Fri 16 Jun , Sebastien Marie wrote:
> On Fri, Jun 16, 2017 at 03:53:09PM +0100, Ricardo Mestre wrote:
> > Hi tech@
> >
> > rebound(8)'s parent proc doesn't seem to need much permissions
On Fri, Jun 16, 2017 at 03:53:09PM +0100, Ricardo Mestre wrote:
> Hi tech@
>
> rebound(8)'s parent proc doesn't seem to need much permissions to do what it
> needs, here is the pledge for the parent for the following promises:
>
> rpath: reload the configuration at reexec time (see below)
>
Hi tech@
rebound(8)'s parent proc doesn't seem to need much permissions to do what it
needs, here is the pledge for the parent for the following promises:
rpath: reload the configuration at reexec time (see below)
proc/exec: needed to reexec itself and kill child if needed
Comments? OK?
Index:
