| layout | title | date | last_updated | description | tags | categories | featured |
|---|---|---|---|---|---|---|---|
post |
Dropping Linux privileges |
2024-12-14 23:00:10 -0800 |
2024-12-14 23:00:10 -0800 |
Dropping Linux privileges |
linux |
linux |
false |
draft
https://blog.habets.se/2022/03/Dropping-privileges.html
"If you’re writing a tool that takes untrusted input, and you should treat almost all input as untrusted, then it’s a good idea to add a layer of defense against bugs in your code. What good is a buffer overflow, if the process is fully sandboxed? This applies to both processes running as root, and as normal users. Though there are some differences."