Unset LD_PRELOAD on startup (before dropping root)

LD_PRELOAD enables keyloggers to easily be made. This solution isn't perfect - really a secure system wouldn't have LD_PRELOAD at all. It was a stupid idea in the first place.
2025-11-03 09:01:43 -05:00 · 2016-12-02 08:47:03 -05:00 · 2016-12-02 08:47:03 -05:00 · 10c2125040
commit 10c2125040
parent 04fc10feeb
1 changed files with 2 additions and 0 deletions
--- a/sway/main.c
+++ b/sway/main.c
@ -220,6 +220,8 @@ int main(int argc, char **argv) {
 		"      --get-socketpath   Gets the IPC socket path and prints it, then exits.\n"
 		"\n";

+	unsetenv("LD_PRELOAD"); // Security
+
 	int c;
 	while (1) {
 		int option_index = 0;