On Fri, May 14, 2021 at 07:29:48AM +0200, Matthias Pressfreund wrote:
> Interesting. How do I figure the correct order of keywords? So far I thought
> it
> didn't matter.
for the kernel, the order doesn't matter.
for people reviewing code, it matters.
> On 2021-05-13 18:40, Theo de Raadt wrote:
> > + if (pledge("stdio rpath inet recvfd sendfd "
> > + "wpath cpath proc tty getpw", NULL) ==
> > -1)
> >
> > Please change the order:
> >
> > stdio rpath wpath cpath inet recvfd sendfd proc tty getpw
> >
> > (It remains extremely permissive).
> >
>
--
Sebastien Marie
