On Tue, Oct 22, 2024 at 05:05:03PM -0600, nisp1953 wrote: > OpenBSD 7.6 AMD64 > > Hi Folks: > > I was going through a Go language tutorial and invoked the command: > > $ go get rsc.io/quote > > To my surprise it downloaded the modules to a newly created directory > ~/go. I thought pledge and unveil were supposed to stop this kind of > behavior? > $ ls -lhd /home/cleetus/go/ > drwxr-xr-x 3 cleetus cleetus 512B Oct 22 16:18 /home/cleetus/go// > > Any advice on this situation would be appreciated. I have no idea how > trustworthy Go modules are. > > -- > Kind regards, > Jonathan >
OpenBSD does not do compartmentalization like many would love.. OpenBSD is not QubesOS. The 1st time I heard of pledge/unveil, I thought the same thoughts, but I think that it's 1 search away on a search engine to find out what is. (It more-less is, I tried it right now.) I agree that an ACTUALLY SECURE OS would have perfect compartmentalization, and perhaps the best way to achieve that is hardware-level compartmentalization. The PerfOS/HW project ought to do exactly that and much more. In my eyes, OpenBSD is not a secure OS, but that is only because I have needs that OpenBSD developers don't deem worthy to fuss over, such as: - anything sensitive or required to exist, on /home/*, fuck that any program can have that because: "I, the user, am someone's toy and my data is worth nothing" - anonymity - privacy If you ask me these are needs that everyone has, it's just that OpenBSD devs seemingly haven't reallized yet the dangers that lurk outside of their comfy home. The more someone knows about you, the more they can exploit you. I want to say more, way more, but I have already said too much and I'll be surprised once again, should this e-mail be sent by mail pigeons. -- Anon Loli ######### This mortal strives for omnisciency. Some tags: perfectionist, minimalist, researcher, scientist, philosopher, developer, autist, anarchist, data hoarder, 99 other tags and interests. I am always up for conversing as long as you meet these requirements: 1. Use PGP encryption for all data shared, 2. Use a open source operating system, NOT Windows, NOT MacOS, 3. Have a open mind - are ready to let go of any and all imperfect views on anything, if they are. Let's change this world for the better, one action at a time ######################## <anonl...@autistici.org>
signature.asc
Description: PGP signature
