>> On Jan 30, 2020, at 4:34 PM, Patrick Kristiansen <patrick@tamstrup.dk> wrote:
> On Thu, Jan 30, 2020, at 21:10, Ingo Schwarze wrote:
>> Hi Patrick,
>>
>> Patrick Kristiansen wrote on Thu, Jan 30, 2020 at 09:05:11PM +0100:
>>
>>> The process I need to run is written in Clojure and thus runs on the
>>> Java Virtual Machine. Do you have any suggestions on how to best go
>>> about making it "daemon-like"?
>>
>> No, i'm sorry i have no advice on that. I would certainly not run
>> soemthing like that under any circumstances, on any machine, and even
>> less so on any machine connected to the Internet.
>
> Out of genuine curiosity, and not to be inflammatory, are you saying
> that running any internet-facing service/process/program is inadvisible
Hi Patrick, one of the risks is something like blind ROP. To quote from the website (emphasis mine):
"requires a stack overflow and a *service that restarts after a crash*"
https://www.scs.stanford.edu/brop/
> under all circumstances if not written to the standards of a daemon
> shipping with OpenBSD and with the facilities (pledge, unveil, etc.)
> available in OpenBSD?
>
> Best regards,
> Patrick
No comments:
Post a Comment