Y
Hacker News
new
|
ask
|
show
|
jobs
by
tremon
56 days ago
Specifically for these kind of situations, sudo has the NOEXEC tag: it preloads a dummy library that null-routes all exec calls to prevent this kind of shell leak.