Hi Stuart,
Is there a process to request a uid in user.list? I've introduced the
setuid code. (easy todo and I shouldn't have procrastinated).
I can't seem to find the info in a man or the porter's handbook. Using
_busybeed:812 for now for testing.
Thanks,
Tracey
On Fri, Jun 15, 2018 at 10:38 AM, Base Pr1me <tlemery5...@gmail.com> wrote:
> Gratitude. In the todo queue.
>
> On Fri, Jun 15, 2018 at 10:31 AM, Stuart Henderson <s...@spacehopper.org>
> wrote:
>
>> On 2018/06/15 10:19, Base Pr1me wrote:
>> > Thanks for the input, Stewart.
>> >
>> > I have knocked around the idea of chroot'ing in the future. It is at
>> least
>> > currently pledged. ... well, according to my current understanding of
>> the
>> > pledge system.
>>
>> It is pledged, but for the process which has access to internet
>> and rw access to the filesystem ("stdio tty rpath wpath inet proc")
>> pledge doesn't add a lot of safety even without chroot things would
>> be a lot better if it dropped to an unprivileged uid.
>>
>>
>
