Security; why not implement prctl(PR_SET_NO_NEW_PRIVS, 1, 0, 0, 0); if you can do the job setting it?
Also, does the lifetime of the child process warrant free-ing and close-ing listeners?
Ideally, child processes should finish so fast that it makes no (positive) difference.
Security; why not implement prctl(PR_SET_NO_NEW_PRIVS, 1, 0, 0, 0); if you can do the job setting it?
Also, does the lifetime of the child process warrant free-ing and close-ing listeners?
Ideally, child processes should finish so fast that it makes no (positive) difference.