Re: capability set reference...

Y2K (y2k@y2ker.com)
Fri, 21 May 1999 17:37:39 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Dieter =?iso-8859-1?Q?N=FCtzel?=: "[Fwd: 2.2.9/2.3.3-ac2 kernel NULL pointer with IDE & 'rmmod -a']"
Previous message: Tony.Lill@ajlc.waterloo.on.ca: "Re: nfssvc not implemented error"
In reply to: Nix: "Re: Curious"

On Wed, 19 May 1999, John Wojtowicz wrote:
> (NOTE: this is general privilege set mathematics, may not apply
> to linux yet.)
> P being process permitted set
pP
> E being process effective set
pE
> I being process inheritable set
pI
> S being process saved set
Doesn't exist
>
> A being files allowed set
fI
> F being files forced set
fP
> 0 being the empty privilege set
fP fE fI are permitted , effective, and inheritable for the file
>
> P=E=(I[parent process] unioned with F[program] restricted by A[program])
pI'=pI
pP'=fP|(pI&fI)
pE'=fE&pP'

Look up cap_emulate_setxuid

-- Any caps I mention are *derived* from a withdrawn draft posix document. See http://www.millenniumproductsllc.com/sjp/ for more info.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Dieter =?iso-8859-1?Q?N=FCtzel?=: "[Fwd: 2.2.9/2.3.3-ac2 kernel NULL pointer with IDE & 'rmmod -a']"
Previous message: Tony.Lill@ajlc.waterloo.on.ca: "Re: nfssvc not implemented error"
In reply to: Nix: "Re: Curious"