cap_net_broadcast vs cap_net_admin

From: jh (jh@linuxcare.com)
Date: Sun Feb 20 2000 - 21:52:31 EST

Next message: Horst von Brand: "Re: Capabilities"
Previous message: Stephen Satchell: "What is the status of ICMP, IPv4, TCP, UDP in 2.3.x?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

While looking at capability.h, "listen to multicast" is defined as
cap_net_broadcast:

/* Allow broadcasting, listen to multicast */
#define CAP_NET_BROADCAST 11

However, while fiddling with capabilities, I noticed under af_netlink.c
that apparently this capability is under cap_net_admin:

./linux/net/netlink/af_netlink.c
/* Only superuser is allowed to listen multicasts */
if (nladdr->nl_groups && !capable(CAP_NET_ADMIN))
return -EPERM;

Is this intentional? This is using kernel 2.2.14.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Horst von Brand: "Re: Capabilities"
Previous message: Stephen Satchell: "What is the status of ICMP, IPv4, TCP, UDP in 2.3.x?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Feb 23 2000 - 21:00:26 EST