Date: Mon, 09 Feb 2015 22:02:46 -0700 From: Ian Lepore <ian@freebsd.org> To: Rui Paulo <rpaulo@me.com> Cc: svn-src-head@freebsd.org, svn-src-all@freebsd.org, src-committers@freebsd.org, Rui Paulo <rpaulo@FreeBSD.org> Subject: Re: svn commit: r278494 - head/sys/kern Message-ID: <1423544566.80968.9.camel@freebsd.org> In-Reply-To: <7FCF7F90-C1B2-4C1C-8781-F89F8519D47E@me.com> References: <201502100434.t1A4YeLr052513@svn.freebsd.org> <7FCF7F90-C1B2-4C1C-8781-F89F8519D47E@me.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 2015-02-09 at 20:46 -0800, Rui Paulo wrote: > On Feb 9, 2015, at 20:34, Rui Paulo <rpaulo@FreeBSD.org> wrote: > > > > Author: rpaulo > > Date: Tue Feb 10 04:34:39 2015 > > New Revision: 278494 > > URL: https://svnweb.freebsd.org/changeset/base/278494 > > > > Log: > > Sanitise the coredump file names sent to devd. > > > > While there, add a sysctl to turn this feature off as requested by > > kib@. > > I wanted to get the sanitiser code in ASAP, but, as suggested by stas@ offline, we think devd should also provide an action mode that runs a command outside sh(1) and without using $PATH. > > -- > Rui Paulo > > > > > Or... we could consider restoring devd to its original relatively benign existance handling device-related events, and move handling of crash dumps into a separate daemon which can shoulder the burden of security for itself. At $work we listen to the devd re-distribute port to handle device events in our apps, and having an ever-growing flood of stuff that's got nothing to do with devices is going to have a negative impact on applications that do such things. -- Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1423544566.80968.9.camel>