Duncaen
commented
3 years ago Not sure about allowing XDG_RUNTIME_DIR by default, this seems like something that is going to be exploitable in some way.
Closed emersion closed 3 years ago
Duncaen
commented
3 years ago Not sure about allowing XDG_RUNTIME_DIR by default, this seems like something that is going to be exploitable in some way.
emersion
commented
3 years ago How so?
Duncaen
commented
3 years ago Its like passing through HOME by default. The user might be allowed to execute something specific and would now be able to read or write from/to a user defined directory through that allowed execution.
emersion
commented
3 years ago Fair enough.
This allows to run Wayland clients under doas.