Closed emersion closed 3 years ago
Not sure about allowing XDG_RUNTIME_DIR
by default, this seems like something that is going to be exploitable in some way.
How so?
Its like passing through HOME by default. The user might be allowed to execute something specific and would now be able to read or write from/to a user defined directory through that allowed execution.
Fair enough.
This allows to run Wayland clients under doas.