MantisBT - Doomseeker
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0003653Doomseeker[All Projects] Securitypublic2019-05-30 06:292019-05-30 11:12
ReporterWubTheCaptain 
Assigned ToPol M 
PrioritynoneSeverityfeatureReproducibilityalways
StatusassignedResolutionopen 
PlatformOSOpenBSDOS Version6.4
Product Version1.2 
Target VersionFixed in Version 
Summary0003653: unveil(2) is not yet supported
DescriptionIf 0003499 is going to happen, then it'd be nice if Doomseeker and Wadseeker supported unveil(2) on OpenBSD 6.4 and later to reduce visibility of the full filesystem to a minimum required. (No good reason why a program should be able to read ~/.ssh/ for example.)
Steps To ReproduceDoomseeker (and Wadseeker) should be able to access the Doomseeker user config directory, cache directory and WAD paths, no more.

As of reporting this issue, both have full access to the filesystem.
Additional Information'https://man.openbsd.org/unveil.2 [^]'
'https://www.openbsd.org/papers/bsdcan2019-unveil/index.html [^]'
TagsNo tags attached.
Relationships
related to 0003499assigned Pol M Port Doomseeker to OpenBSD 
related to 0003500assigned Pol M pledge(2) is not yet supported 
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2019-05-30 06:29WubTheCaptainNew Issue
2019-05-30 06:29WubTheCaptainRelationship addedchild of 0003499
2019-05-30 06:30WubTheCaptainRelationship addedrelated to 0003500
2019-05-30 06:30WubTheCaptainRelationship replacedparent of 0003500
2019-05-30 06:34WubTheCaptainRelationship replacedrelated to 0003499
2019-05-30 06:41WubTheCaptainRelationship replacedrelated to 0003500
2019-05-30 11:12Pol MAssigned To => Pol M
2019-05-30 11:12Pol MStatusnew => assigned

There are no notes attached to this issue.