Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Drop privileges on OpenBSD #38

Draft
wants to merge 3 commits into
base: master
Choose a base branch
from

Conversation

mshroyer
Copy link

@mshroyer mshroyer commented Oct 5, 2022

On OpenBSD, use pledge(2) to drop unneeded privileges after initialization.

Only allow stdio access while handling data from the network. AFAIK, with this
change the program will only compile on OpenBSD; further work would be needed
to make this cross-platform.
This changes how we invoke OpenBSD's pledge(2) to drop privileges after
initialization, using conditional compilation so we can still build on
platforms where pledge is not available.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant