Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://hachyderm.io/users/dalias/statuses/111177376242964591">Rich Felker (dalias@hachyderm.io)'s status on Saturday, 07-Oct-2023 22:24:47 JST</a><a href="https://hachyderm.io/@dalias" title="dalias@hachyderm.io"><img src="https://gnusocial.jp/avatar/40873-48-20221207231635.webp" width="48" height="48" alt="Rich Felker" style="position: absolute; left: 0; top: 0;">Rich Felker</a><div><a href="https://mastodon.social/@pid_eins/111177305026430164" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/92094" title="pid_eins@mastodon.social">Lennart Poettering</a></li><li><a href="https://gnusocial.jp/user/136486" title="jamesh@aus.social">James Henstridge</a></li></ul></div></section><article><p><a href="https://mastodon.social/@pid_eins">@pid_eins</a> <a href="https://aus.social/@jamesh">@jamesh</a> <a href="https://metalhead.club/@mariusor">@mariusor</a> This is largely a gap between ideological purity and practical security. No ordinary user on non shared machine has ever gotten pwned because the system let them keep an open fd to something. Plenty have gotten pwned because polkit handed out root to an unprivileged junk process that asked nicely.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2137826#notice-4225377">In conversation</a><time datetime="2023-10-07T22:24:47+09:00" title="Saturday, 07-Oct-2023 22:24:47 JST">Saturday, 07-Oct-2023 22:24:47 JST</time> <span>from <span><a href="https://hachyderm.io/@dalias/111177376242964591" rel="external" title="Sent from hachyderm.io via ActivityPub">hachyderm.io</a></span></span><a href="https://hachyderm.io/@dalias/111177376242964591">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Rich Felker (dalias@hachyderm.io)'s status on Saturday, 07-Oct-2023 22:24:47 JSTRich Felker
in reply to
@pid_eins @jamesh @mariusor This is largely a gap between ideological purity and practical security. No ordinary user on non shared machine has ever gotten pwned because the system let them keep an open fd to something. Plenty have gotten pwned because polkit handed out root to an unprivileged junk process that asked nicely.
In conversationSaturday, 07-Oct-2023 22:24:47 JST from hachyderm.iopermalink

Public

Embed Notice

HTML Code

Corresponding Notice