Allow using /bin and /usr/bin as impure prefixes on non-darwin by default
These directories are generally world-readable anyway, and give us the two most common linux impurities (env and sh)
This commit is contained in:
parent
fcf57aad27
commit
79ca503332
|
@ -56,7 +56,7 @@
|
||||||
#define DEFAULT_ALLOWED_IMPURE_PREFIXES "/System/Library/Frameworks /usr/lib /dev /bin/sh"
|
#define DEFAULT_ALLOWED_IMPURE_PREFIXES "/System/Library/Frameworks /usr/lib /dev /bin/sh"
|
||||||
#else
|
#else
|
||||||
#define SANDBOX_ENABLED 0
|
#define SANDBOX_ENABLED 0
|
||||||
#define DEFAULT_ALLOWED_IMPURE_PREFIXES ""
|
#define DEFAULT_ALLOWED_IMPURE_PREFIXES "/bin" "/usr/bin"
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#if CHROOT_ENABLED
|
#if CHROOT_ENABLED
|
||||||
|
|
Loading…
Reference in a new issue