Re: Filesystem Capabilities in 2.6?

• Next message: Sam Ravnborg: "[PATCH-RFC] ARM Makefile cleanup"
• Previous message: Sam Ravnborg: "Re: Kconfig (qt) -> Gconfig (gtk)"
• In reply to: Olaf Dietsche: "Re: Filesystem Capabilities in 2.6?"
• Next in thread: Dax Kelson: "Re: Filesystem Capabilities in 2.6?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In article <87znssytu7.fsf@goat.bogus.local> you wrote:
> I still don't get it. How is this different from suid root. The worst
> I can imagine is an admin doing chcap all+eip, which is no different
> from doing a chown root; chmod u+s.

The probvlem is that most software does not know abaout capabilities. A
simple example is libc which will not ignore LD_PRELOAD because it does not
notice that there is a difference in effective and real capabilities of the
proces.

Personally I think this is solvable, and we realy need a way to enable
admins to use the least priveledge principle on their servers by removing
suid root programs completely.

Greetings
Bernd

-- 
www.freefire.org
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

• Next message: Sam Ravnborg: "[PATCH-RFC] ARM Makefile cleanup"
• Previous message: Sam Ravnborg: "Re: Kconfig (qt) -> Gconfig (gtk)"
• In reply to: Olaf Dietsche: "Re: Filesystem Capabilities in 2.6?"
• Next in thread: Dax Kelson: "Re: Filesystem Capabilities in 2.6?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 07 2002 - 22:00:27 EST