@whot is there any hope of a more general fd-revocation mechanism?
Flatpak has a “revokefs” FUSE filesystem so that updates can be pulled to a temporary directory by an unprivileged user, then access to that directory is revoked, so that once the checksums are verified the files can be hardlinked directly into the system repo without risk of the unprivileged user being able to modify the files after they are written.
=> More informations about this toot | View the thread | More toots from wjt@mastodon.me.uk
=> View whot@fosstodon.org profile
text/geminiThis content has been proxied by September (ba2dc).