CCCHH/spaceapid
CCCHH/spaceapid
54
2
Fork 0
Code Issues 6 Pull requests 1 Packages Projects Releases 1 Activity

Reorganize risky code to allow privilege dropping #28

New issue
Open
opened 2024-02-07 16:58:08 +01:00 by bendodroid · 0 comments
bendodroid commented 2024-02-07 16:58:08 +01:00
Member
Copy link

The syscalls to create files and directories and open them should be done at startup to then drop all unnecessary privileges for the rest of the programs lifetime.

See: https://media.ccc.de/v/37c3-11811-writing_secure_software

The syscalls to create files and directories and open them should be done at startup to then drop all unnecessary privileges for the rest of the programs lifetime. See: https://media.ccc.de/v/37c3-11811-writing_secure_software
bendodroid added the
cat:security
cat:refactoring
 labels 2024-02-07 17:02:59 +01:00
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
renovate/configure
v0.1.0
Labels
Clear labels   
cat:refactoring

   
cat:security

   
cat:tooling

   
is:breakingChange

   
is:bug

   
is:feature

   
is:idea

   
is:postponed

   
res:wontfix
No labels
cat:refactoring
cat:security
cat:tooling
is:breakingChange
is:bug
is:feature
is:idea
is:postponed
res:wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: CCCHH/spaceapid#28
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?