Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
imtringued
on July 20, 2018
|
parent
|
context
|
favorite
| on:
Unveil(2) – Unveil parts of a restricted filesyste...
If the daemon is going to call unveil on every file access then what purpose does unveil serve?
ben_bai
on July 20, 2018
[–]
The trick is to unveil all the files the server needs to operate on and then lock further unveiling.
This way bugs/exploits of the server can't suddenly go read/write to i.e. /etc/passwd.
Join us for
AI Startup School
this June 16-17 in San Francisco!
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
