When Casper was designing the rough equivalent in #Solaris, the least privilege system, he tried to prevent this. For instance, PRIV_FILE_DAC_WRITE won’t let you write to a file owned by UID 0 unless your euid is 0 or you already have all privileges (equivalent to root access).
https://mastodon.social/@vegard/112365131001894332
Conversation
Notices
-
Embed this notice
Alan Coopersmith (alanc@fosstodon.org)'s status on Thursday, 02-May-2024 02:45:23 JST Alan Coopersmith
- Haelwenn /элвэн/ :triskell: likes this.