-
Notifications
You must be signed in to change notification settings - Fork 454
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature Request: Timed Rules / TTL #627
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I'd like to allow generic tools like
wget
for a brief period (5 minutes, or 1hr, etc) - for example during abrew install run
. But I don't want to whitelistwget
permanently, because a malicious execution might use it to fetch a 'next stage' binary for an attack.Allowing 'per process' is too granular, as
wget
can get called a dozen times by brew. In addition, I end up with dozens of rules 'per process' that were never meant to be long-lived.The text was updated successfully, but these errors were encountered: