Ya'll need to discover pledge(2), unveil(2) and privilege separation.
https://twitter.com/majek04/status/1034759172041129984 …
-
-
Replying to @canadianbryan
Linux capabilities are awful and blaming that shit on POSIX by calling them "POSIX capabilities" when they have nothing to do with POSIX is.... uhg.
3 replies 3 retweets 7 likes -
Replying to @RichFelker @canadianbryan
Someone correct me if I'm wrong, but I think what happened was this: POSIX realized root was stupid, and switched to making "appropriate privileges" implementation-defined. Linux geeks somehow misread that as POSIX adopting their (copied from somewhere?) capabilities model.
2 replies 0 retweets 1 like
Replying to @RichFelker @canadianbryan
There's some text in the Rationale document on it: http://pubs.opengroup.org/onlinepubs/9699919799/xrat/V4_xbd_chap03.html#tag_21_03_00_01 …
6:50 AM - 29 Aug 2018
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.