txt.sour.is @<movq https://www.uninformativ.de/twtxt.txt?nick=movq> "The day will come when I’ll have to dig up *why* every process can interact with every other process’s file descriptors by means of `/proc/$ ..."

Yarn

Recent twts in reply to #gzzdgpa

www.uninformativ.de

The day will come when I’ll have to dig up why every process can interact with every other process’s file descriptors by means of /proc/$pid/fd on Linux (if it’s the same user). Is there a legitimate reason for that … ? (I know about hidepid, but that doesn’t help here.)

⤋ Read More

prologic

twtxt.net

Tue, Jun 13 20:13 (47w ago)

This is why the PID Namespace controller exists in Linux 👌

⤋ Read More

movq

www.uninformativ.de

Tue, Jun 13 21:58 (47w ago)

@prologic@twtxt.net Hmm. That would require me to put each and every process into its own namespace, wouldn’t it? I don’t think that’s practical. 🤔 Or maybe I’m misunderstanding.

I’ve never really thought about this, to be honest. There’s no procfs on the BSDs, so I guess that a) it’s not really necessary, b) there should be plenty of rants from BSD users on this issue that I could read. 😅

⤋ Read More

prologic

twtxt.net

Wed, Jun 14 00:01 (47w ago)

@movq@www.uninformativ.de Yes but this is easy with unshare

⤋ Read More

movq

www.uninformativ.de

Wed, Jun 14 10:55 (47w ago)

@prologic@twtxt.net Hmm, I’ll have to look into it. 🤔 Probably not what I meant, but interesting nontheless. 👍

⤋ Read More

Participate

Login to join in on this yarn.