• million
    link
    fedilink
    English
    7
    edit-2
    6 months ago

    I read the original mastodon post by the developer of run0 and I am still don’t understand what the problem with SUID is.

    Whats an example of an attack that would work with sudo and doas (which also uses SUID) and not on run0?

      • @[email protected]
        link
        fedilink
        26 months ago

        Thanks for taking the time to explain. I was trying to get my head around on how this works but could not understand much of it. A lot of people here are very much against systemd in all senses, but this sounds like a better approach. Even if it not done as systemd, makes more sense than checking files and getting elevated privileges for a scope and use guardrails everywhere