Why are executables on Linux allowed to have a bit set to hand them root privs when exec'd? Because fuck you, that's why.
Unlike suid, ssh root@localhost does not let you control environ (vars, rlimits, inherited fds, etc) of root proc
-
-
suid is essentially an unbounded attack surface.
-
Tweet unavailable
-
Pubkey auth and a key with no passphrase is equivalent (permission-wise) to unix domain socket, no?
-
Tweet unavailable
-
HM, that last part got me thinking...
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.