Researchers at the Qualys Threat Research Unit (TRU) have unearthed discovered a critical security flaw in OpenSSH's server (sshd) in glibc-based Linux systems.
  • Possibly linux@lemmy.zipEnglish
    1·
    4 months ago

    Can’t it use built in OS mechanisms for that? Surely you could figure out a way to only give it permissions it needs. Maybe break it up into two separate processes.

    • Sethayy@sh.itjust.works
      1·
      4 months ago

      That just sounds like root with extra steps (trying to implement OS security policies in a remote terminal utility)