Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Yes it should definitely require a capability.

Still a risk that some admin-enabled method (like enabling an IPsec VPN) provides a path to it, but would reduce the potential for crafting weird inputs.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: