Lack of ability to trick apps without breaking system-wide setting is the root cause of the problem.
-
-
-
Tweet unavailable
-
LD_PRELOAD is not a solution to this, apps can workaround with direct syscalls. seccomp or time namespaces are real solutions.
-
Tweet unavailable
-
Yes, modern seccomp can intercept, filter, and rewrite syscalls. Original could only block-all.
End of conversation
New conversation -
-
-
welp, a browser is an app, too.
-
Yes, but cert-checking could take place in a system component that has access to actual time.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.