Y
Hacker News
new
|
ask
|
show
|
jobs
by
josephcsible
1906 days ago
If the third party code runs with a different UID, then it can't read the environment either.
1 comments
yrro
1906 days ago
Unless it has DAC override or other capabilities. Belt and braces!
link
josephcsible
1906 days ago
If it has DAC override, then it can read your credentials file just as easily as it can the environment.
link
yrro
1905 days ago
Not if SELinux policy prevents it.
link