[f-]

Disappointed that my LD_PRELOAD exploit - still unpatched after 20 years! - did not make the list:

http://lcamtuf.coredump.cx/soft/ld-expl

[majke]

I'm afraid it only got worse.

  marek@mrnew:~$ unshare -Ur
  root@mrnew:~# 

Not only it's easier to do than LD_PRELOAD these days, you actually _do_ get real elevated capabilities.

[enriquto]

But you are not really root, after that, you only think that you are.

[f-]

Does objective reality exist, my friend?

[monocasa]

I mean, in this case other calls will fail with EACCESS, so here, yes.

And I've done a similar thing for an integration test framework for low level daemons, so I know very well how much of a pain it is to get close to emulating "oh yeah, you're totally root" to processes via LD_PRELOAD.