pledge to only use "stdio rpath"; rpath is for readig the wtmp files.

ok doug

diff --git a/usr.sbin/ac/ac.c b/usr.sbin/ac/ac.c
index d1628e6..3e9da2f 100644 (file)
--- a/usr.sbin/ac/ac.c
+++ b/usr.sbin/ac/ac.c
@@ -200,6 +200,9 @@ main(int argc, char *argv[])
        FILE *fp;
        int c;
 
+       if (pledge("stdio rpath", NULL) == -1)
+               err(1, "pledge");
+
        fp = NULL;
        while ((c = getopt(argc, argv, "Ddpt:w:")) != -1) {
                switch (c) {