Re: [PATCH] Filesystem capabilities support

From: Arnout Engelen
Date: Sun Jul 24 2005 - 08:45:32 EST


Nicholas Hans Simmonds wrote:
> This is a simple attempt at providing capability support

Very good to see progress in this field. I'm not familiar with the
technical details yet, but this seems an important security feature imho.

How does this patch relate to the one at
http://www.olafdietsche.de/linux/capability ?

I do think the LD_PRELOAD / LD_LIBRARY_PATH problem (also described by
Olaf) should be mentioned in the kernel config, and fs capabilities should
remain marked EXPERIMENTAL until that's resolved.


Kind regards,

--
Arnout Engelen <arnouten@xxxxxxxx>

"If it sounds good, it /is/ good."
-- Duke Ellington
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/