On Thu, 25 Oct 2018 11:19:34 +0100, Ricardo Mestre wrote:
> The code path were we pass `pathname' in the arguments is already limited
> with pledge(2), but since we know exactly what it is then we can go further
> and also unveil(2) it with read permissions.
OK millert@
- todd
Hi,
The code path were we pass `pathname' in the arguments is already limited
with pledge(2), but since we know exactly what it is then we can go further and
also unveil(2) it with read permissions.
Comments? OK?
Index: getconf.c