On 2019/06/08 13:15, Jeremie Courreges-Anglas wrote: > Naive question: should sysctl(8) be pledged? I'm not objecting but > I wonder what we are trying to protect us from, here.
AFAIK it can't be done because pledge always restricts which sysctl nodes may be accessed.
