From: | Ciaran McCreesh <ciaran.mccreesh@××××××××××.com> | ||
---|---|---|---|
To: | gentoo-dev@l.g.o | ||
Subject: | Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | ||
Date: | Thu, 15 May 2014 15:48:44 | ||
Message-Id: | 20140515164824.4a7425c0@googlemail.com | ||
In Reply to: | Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default by "Thomas D." |
1 | On Thu, 15 May 2014 13:12:30 +0200 |
2 | "Thomas D." <whissi@××××××.de> wrote: |
3 | > Ryan Hill wrote: |
4 | > > Probably best to make FEATURES=distcc disable network-sandbox |
5 | > > then. People enabling it are explicitly saying they want to access |
6 | > > the network. |
7 | > |
8 | > Do you really think it is a good behavior to automatically disable |
9 | > something you can call a "security feature"? At least there should be |
10 | > a warning, not? |
11 | |
12 | Sandboxing isn't about security. It's about catching mistakes. |
13 | |
14 | -- |
15 | Ciaran McCreesh |
File name | MIME type |
---|---|
signature.asc | application/pgp-signature |
Subject | Author |
---|---|
Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | Luis Ressel <aranea@×××××.de> |
Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | hasufell <hasufell@g.o> |
Re: [gentoo-dev] Re: RFC: enabling ipc-sandbox & network-sandbox by default | "Thomas D." <whissi@××××××.de> |