Diffusion FreeBSD src repository 49f31b5e0ca7

netstat: strip the binary of sgid
49f31b5e0ca7
Actions

Description

netstat: strip the binary of sgid

Everything in the live path seems to use sysctls these days, with kvm
only being used for pulling information from core dumps. Strip the
binary of /dev/{k,}mem access to reduce the surface area with access
to kmem.

Reviewed by: glebius, markj
Differential Revision: https://reviews.freebsd.org/D47210

Details

Provenance

kevans

Authored on Apr 20 2025, 6:18 PM

Reviewer

glebius

Differential Revision

D47210: netstat: strip the binary of sgid

Parents

rGd8fd55143870: bintrans: disable argument permutation for qp and base64

Branches

Unknown

Tags

Unknown

Event Timeline

kevans committed rG49f31b5e0ca7: netstat: strip the binary of sgid (authored by kevans).Apr 20 2025, 6:18 PM

kevans added an edge: D47210: netstat: strip the binary of sgid.

Changes (2)

Path

Size

usr.bin/

netstat/

Makefile

main.c

rG49f31b5e0ca7

View Options

usr.bin/netstat/Makefile