Reorganize risky code to allow privilege dropping #28

Open
opened 2024-02-07 16:58:08 +01:00 by bendodroid · 0 comments
Member

The syscalls to create files and directories and open them should be done at startup to then drop all unnecessary privileges for the rest of the programs lifetime.

See: https://media.ccc.de/v/37c3-11811-writing_secure_software

The syscalls to create files and directories and open them should be done at startup to then drop all unnecessary privileges for the rest of the programs lifetime. See: https://media.ccc.de/v/37c3-11811-writing_secure_software
bendodroid added the
cat:security
cat:refactoring
labels 2024-02-07 17:02:59 +01:00
Sign in to join this conversation.
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: CCCHH/spaceapid#28
No description provided.