Re: Filesystem Capabilities in 2.6?

Hacksaw (
Sun, 03 Nov 2002 02:36:01 -0500

A call from left field:

As a sys-admin I love the idea of the capabilities, but I hate this mount
--bind thing. I'd really rather see it have its own command name. If it were
strictly something that happens at mount time for a filesystem that'd be one
thing, but

>mount --bind --capability=xx,yy /usr/bin/foo /usr/bin/foo

looks like a mistake.

If you were loop mounting the binary into the user's directory, then I could
see using mount.

This would be clearer:

setcap -c xx,yy /usr/bin/foo

(I also have nothing against long option names.)

The end is a finish, a conclusion or a completion. -- -- KB1FVD

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to More majordomo info at Please read the FAQ at