Stuart Henderson <stu@spacehopper.org> wrote:
> > I've looked into fexecve() numerous times and I just cannot for the life
> > of me see how to avoid it becoming a component of attack methodology.
> >
> > The people who invented must be completely unaware of the dangerous
> > tooling this brings to the table.
> >
> > OpenBSD will never have it.
>
> Surely they must be aware... In particular in an OS with memfd_create
> it seems particularly potent.
Correct. It is a pivot mechanism.
No comments:
Post a Comment