Re: RFC: disablenetwork facility. (v4)
From: Valdis . Kletnieks
Date: Mon Dec 28 2009 - 16:30:14 EST
On Mon, 28 Dec 2009 21:55:11 +0100, Pavel Machek said:
> it is really only required for binaries setuid to someone else, but
> that would be too ugly. (Plus, as someone said, ping is great for
> leaking data out.)
Hmm... How is it "too ugly"? It's just a 'euid != uid' comparison? Or
am I missing some contortion required?
Attachment:
pgp00000.pgp
Description: PGP signature