29 апреля 2025 г. 08:24:12 UTC, Arne Schwabe пишет:
>There are more instances where the tmp dir is used. Just to name one of the
>top of my head is tls-crypt-v2-verify. I wonder if the benefit herre is big
>enough. As you said, even in your ro scenario it can be workarounded with
>specifying an
Am 28.04.2025 um 23:46 schrieb Klemens Nanni:
As per the manual, it is subject to `chroot` and used only by
`client-connect` and `plugin`.
Without additional code being run and `chroot /var/empty/` (amongst
`user`, `persist-*`, etc.) set to reduce run-time privileges as much as
possible, the de
As per the manual, it is subject to `chroot` and used only by
`client-connect` and `plugin`.
Without additional code being run and `chroot /var/empty/` (amongst
`user`, `persist-*`, etc.) set to reduce run-time privileges as much as
possible, the default temporary is still required upon start:
Op
