Elektra
0.8.18
|
Security is a very important point in librarys. In most use cases there is nearly no point of danger in using elektra. But some a very security related, especially when you use a daemon or some kind of distributed configuration.
system/ paths are never effected by environment variables. They always use the build-in KDB_DB_SYSTEM path.
user/ paths, on the other hand, are resolved by:
This owner is appended to KDB_DB_HOME.
All files below those paths might be modified by elektra programs. By making KDB_DB_SYSTEM world-writeable, the users might overwrite the configuration of others.
Can be changed using standard CMake ways. Some hints:
http://wiki.debian.org/Hardening
We use valgrind (–tool=memcheck) to make sure that elektra does not suffer memory leaks and incorrect memory handling.