artulab
projects
/
openbsd
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
f9214ef
)
unveil can be used to restrict access to utmp and /dev
author
deraadt
<deraadt@openbsd.org>
Tue, 7 Aug 2018 18:28:05 +0000
(18:28 +0000)
committer
deraadt
<deraadt@openbsd.org>
Tue, 7 Aug 2018 18:28:05 +0000
(18:28 +0000)
usr.bin/wall/wall.c
patch
|
blob
|
history
diff --git
a/usr.bin/wall/wall.c
b/usr.bin/wall/wall.c
index
b45c4e6
..
d07e54c
100644
(file)
--- a/
usr.bin/wall/wall.c
+++ b/
usr.bin/wall/wall.c
@@
-1,4
+1,4
@@
-/* $OpenBSD: wall.c,v 1.3
2 2016/08/01 20:30:25 martijn
Exp $ */
+/* $OpenBSD: wall.c,v 1.3
3 2018/08/07 18:28:05 deraadt
Exp $ */
/* $NetBSD: wall.c,v 1.6 1994/11/17 07:17:58 jtc Exp $ */
/*
@@
-115,6
+115,10
@@
main(int argc, char **argv)
makemsg(*argv);
+ if (unveil(_PATH_UTMP, "r") == -1)
+ err(1, "unveil");
+ if (unveil(_PATH_DEV, "w") == -1)
+ err(1, "unveil");
if (pledge("stdio rpath wpath getpw proc", NULL) == -1)
err(1, "pledge");
projects / openbsd / commitdiff