You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hola,
first of all I have no deeper understanding of programming, so my following ideas arise from my obersvation.
I would like to improve the situation of running sway on minimal setups without the need or possibility
of elogind.
My idea is to run sway with capability SYS_CAP=eip and then let drop these at the moment as they are unneded like the way the suid method works.
I would like to hear your thoughts and if this would be an improvement overall.
Thanks.
The text was updated successfully, but these errors were encountered:
Although I've seriously considered removing the CAP_SYS_ADMIN support because it's honestly a false sense of security, and is more fragile that just using setuid. CAP_SYS_ADMIN is a ridiculous capability that allows you to do effectively as much as root, and it also then requires your user to be in the input group, which means any program you run can keylog everything.
Hola,
first of all I have no deeper understanding of programming, so my following ideas arise from my obersvation.
I would like to improve the situation of running sway on minimal setups without the need or possibility
of elogind.
My idea is to run sway with capability SYS_CAP=eip and then let drop these at the moment as they are unneded like the way the
suid method
works.I would like to hear your thoughts and if this would be an improvement overall.
Thanks.
The text was updated successfully, but these errors were encountered: