Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://pleroma.ledoian.cz/objects/6ab4dd0c-7c77-4c66-9d32-3e7a412f26c0">LEdoian (ledoian@pleroma.ledoian.cz)'s status on Sunday, 10-Sep-2023 21:31:16 JST</a><a href="https://pleroma.ledoian.cz/users/ledoian" title="ledoian@pleroma.ledoian.cz"><img src="https://gnusocial.jp/avatar/152393-48-20230722231126.webp" width="48" height="48" alt="LEdoian" style="position: absolute; left: 0; top: 0;">LEdoian</a><div><a href="https://gnusocial.jp/notice/4011402" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/152393" title="ledoian@pleroma.ledoian.cz">LEdoian</a></li></ul></div></section><article><p><a href="https://queer.hacktivis.me/users/lanodan">@lanodan</a> tbh, completely privileged processes should probably die. There should be as few processes with full capabilities as possible. That is not the state currently, IIRC many services still run under full root even when they do not need to change users, access network, …</p><p>If only a few processes got e.g. cap_setuid, it would be far more easy to check their behaviour.</p><p>(And yes, since capabilities are Linux-specific, this would be complicated)</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2044336#notice-4011416">In conversation</a><time datetime="2023-09-10T21:31:16+09:00" title="Sunday, 10-Sep-2023 21:31:16 JST">about a year ago</time> <span>from <span><a href="https://pleroma.ledoian.cz/objects/6ab4dd0c-7c77-4c66-9d32-3e7a412f26c0" rel="external" title="Sent from pleroma.ledoian.cz via ActivityPub">pleroma.ledoian.cz</a></span></span><a href="https://pleroma.ledoian.cz/objects/6ab4dd0c-7c77-4c66-9d32-3e7a412f26c0">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
LEdoian (ledoian@pleroma.ledoian.cz)'s status on Sunday, 10-Sep-2023 21:31:16 JSTLEdoian
in reply to
- Haelwenn /элвэн/ :triskell:
- LEdoian
@lanodan tbh, completely privileged processes should probably die. There should be as few processes with full capabilities as possible. That is not the state currently, IIRC many services still run under full root even when they do not need to change users, access network, …
If only a few processes got e.g. cap_setuid, it would be far more easy to check their behaviour.
(And yes, since capabilities are Linux-specific, this would be complicated)
In conversationabout a year ago from pleroma.ledoian.czpermalink

Public

Embed Notice

HTML Code

Corresponding Notice