Re: Capabilities done right [diff against 2.3.1]

Pavel Machek (pavel@atrey.karlin.mff.cuni.cz)
Thu, 20 May 1999 15:47:58 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Kurt Garloff: "Re: ide-scsi bug in 2.2.[3-9]"
Previous message: Fernando Barreto: "RedHat 6.0 on Sparc - Kernel Failure"
In reply to: Y2K: "Re: Capabilities done right [diff against 2.3.1]"
Next in thread: Y2K: "Re: Capabilities done right [diff against 2.3.1]"

Hi!
> >> #!/bin/bash --drop NET_BIND_SERVICE
>
> > Great. Now the default shell is all-powerful.
>
> No, it inherits the powers of the user...
>
>
> btw: is there a tool for setting and clearing caps, for switching in secure
> mode (as i see from the source, the securelevel isnt used, its an exported
> symbol?)

http://atrey.karlin.mff.cuni.cz/~pavel/elfcap.html for setting/claring
elf_caps.

Pavel

-- The best software in life is free (not shareware)! Pavel GCM d? s-: !g p?:+ au- a--@ w+ v- C++@ UL+++ L++ N++ E++ W--- M- Y- R+

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Kurt Garloff: "Re: ide-scsi bug in 2.2.[3-9]"
Previous message: Fernando Barreto: "RedHat 6.0 on Sparc - Kernel Failure"
In reply to: Y2K: "Re: Capabilities done right [diff against 2.3.1]"
Next in thread: Y2K: "Re: Capabilities done right [diff against 2.3.1]"