Unset LD_PRELOAD on startup (before dropping root)

LD_PRELOAD enables keyloggers to easily be made. This solution isn't
perfect - really a secure system wouldn't have LD_PRELOAD at all. It was
a stupid idea in the first place.
This commit is contained in:
Drew DeVault 2016-12-02 08:47:03 -05:00
parent 04fc10feeb
commit 10c2125040

View File

@ -220,6 +220,8 @@ int main(int argc, char **argv) {
" --get-socketpath Gets the IPC socket path and prints it, then exits.\n"
"\n";
unsetenv("LD_PRELOAD"); // Security
int c;
while (1) {
int option_index = 0;