Marcus Müller on Nostr: npub19laga…phm4g hm. But that basically necessitates solid RPC between an ...
npub19lagad90ncl2ryqvgctg84wal4mus8wznx950a0trhw85lnflucquphm4g (npub19la…hm4g) hm. But that basically necessitates solid RPC between an unprivileged client and a privileged system management daemon, which in itself is exactly where we tend to find parsing bugs for decades (like the glibc one triggering this discussion is).
I'd honestly rather see a kind-of-single-syscall-suid mechanism that only works with a sensible verifiable pledge()-equivalent. Like, think of an xattr that contains ebpf code describing that a privileged open can open exactly one file, and...
Published at
2023-10-04 09:57:22Event JSON
{
"id": "d723567280c6482a38f43198a52d23713a9da0a6cdfa2f28ff7f51239f863eb5",
"pubkey": "0c49ac455eb3cd46dc854d0180b2f0e411d5330d8d2af04504c70c7b599dd1fc",
"created_at": 1696413442,
"kind": 1,
"tags": [
[
"p",
"2ffa8eb4af9e3ea1900c461683d5ddfd77c81dc2998b47f5eb1ddc7a7e69ff30",
"wss://relay.mostr.pub"
],
[
"p",
"1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"wss://relay.mostr.pub"
],
[
"e",
"e795f85db38cc7183b4ce3fa389f62d239af0854f20b7168bc87abfa56af9df7",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.social/users/funkylab/statuses/111176151353224683",
"activitypub"
]
],
"content": "nostr:npub19lagad90ncl2ryqvgctg84wal4mus8wznx950a0trhw85lnflucquphm4g hm. But that basically necessitates solid RPC between an unprivileged client and a privileged system management daemon, which in itself is exactly where we tend to find parsing bugs for decades (like the glibc one triggering this discussion is).\nI'd honestly rather see a kind-of-single-syscall-suid mechanism that only works with a sensible verifiable pledge()-equivalent. Like, think of an xattr that contains ebpf code describing that a privileged open can open exactly one file, and...",
"sig": "3e1082871585fd7c4a67a04b9800880068f3b5f9dca2a1c8f29c63e515a4ad695e428d1ce733074dec17010d9ac128595b7f32183d648e1c43218669d2abbc0c"
}
