|
|
|
|
|
|
by Mordak
3726 days ago
|
|
|
> ISTM this will just slightly raise the bar so that attackers who get code execution have to force a call to execve. If the program did not pledge 'exec', then calling execve() will cause the program to be killed. Lots of programs don't need exec, so don't pledge it. |
|
|