Archives
Archives
| From: | Ciaran McCreesh <ciaran.mccreesh@××××××××××.com> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o | ||
| Subject: | Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | ||
| Date: | Thu, 15 May 2014 15:48:44 | ||
| Message-Id: | 20140515164824.4a7425c0@googlemail.com | ||
| In Reply to: | Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default by "Thomas D." |
||
| 1 | On Thu, 15 May 2014 13:12:30 +0200 |
| 2 | "Thomas D." <whissi@××××××.de> wrote: |
| 3 | > Ryan Hill wrote: |
| 4 | > > Probably best to make FEATURES=distcc disable network-sandbox |
| 5 | > > then. People enabling it are explicitly saying they want to access |
| 6 | > > the network. |
| 7 | > |
| 8 | > Do you really think it is a good behavior to automatically disable |
| 9 | > something you can call a "security feature"? At least there should be |
| 10 | > a warning, not? |
| 11 | |
| 12 | Sandboxing isn't about security. It's about catching mistakes. |
| 13 | |
| 14 | -- |
| 15 | Ciaran McCreesh |
| File name | MIME type |
|---|---|
| signature.asc | application/pgp-signature |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | Luis Ressel <aranea@×××××.de> |
| Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | hasufell <hasufell@g.o> |
| Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | "Thomas D." <whissi@××××××.de> |