update TODO

author: Lennart Poettering <lennart@poettering.net> 2022-11-18 14:58:30 +0100
committer: Lennart Poettering <lennart@poettering.net> 2022-11-18 14:58:30 +0100
commit: d995ccd7b55f403846093ceb61a149c9f52247d7 (patch)
tree: f73cb74140f2fc810f7a151cf602f3854acf2f5c /TODO
parent: Merge pull request #25410 from DaanDeMeyer/mkfs-xfs-fixes (diff)
download: systemd-d995ccd7b55f403846093ceb61a149c9f52247d7.tar.xz
systemd-d995ccd7b55f403846093ceb61a149c9f52247d7.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/TODO b/TODO
index 78d8064c9d..cd80d05e7a 100644
--- a/TODO
+++ b/TODO
@@ -121,6 +121,12 @@ Deprecations and removals:
 
 Features:
 
+* maybe prohibit setuid() to the nobody user, to lock things down, via seccomp.
+  the nobody is not a user any code should run under, ever, as that user would
+  possibly get a lot of access to resources it really shouldn't be getting
+  access to due to the userns + nfs semantics of the user. Alternatively: use
+  the seccomp log action, and allow it.
+
 * sd-boot: add a new PE section .bls or so that carries a cpio with additional
   boot loader entries (both type1 and type2). Then when initializing, find this
   section, iterate through it and populate menu with it. cpio is simple enough
author	Lennart Poettering <lennart@poettering.net>	2022-11-18 14:58:30 +0100
committer	Lennart Poettering <lennart@poettering.net>	2022-11-18 14:58:30 +0100
commit	d995ccd7b55f403846093ceb61a149c9f52247d7 (patch)
tree	f73cb74140f2fc810f7a151cf602f3854acf2f5c /TODO
parent	Merge pull request #25410 from DaanDeMeyer/mkfs-xfs-fixes (diff)
download	systemd-d995ccd7b55f403846093ceb61a149c9f52247d7.tar.xz systemd-d995ccd7b55f403846093ceb61a149c9f52247d7.zip