Re: Filesystem Capabilities in 2.6?

Alan Cox (alan@lxorguk.ukuu.org.uk)
03 Nov 2002 12:53:26 +0000

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alan Cox: "Re: Filesystem Capabilities in 2.6?"
Previous message: Adam J. Richter: "Re: Patch: 2.5.45 PCI Fixups for PCI HotPlug"

On Sun, 2002-11-03 at 06:46, Alexander Viro wrote:
> Quite so. Now, ability to _remove_ capabilities on exec() is a Good Thing(tm)
> regardless of suid. It can be combined with suid - that gives you something
> that is still evil, but less than it used to be. But I don't see any point
> in new independent mechanism for raising caps - e.g. since it assumes a
> bunch of new programs that were written to run with elevated caps and
> with assumption that they will be less dangerous than suid-root ones.
> Somehow, it doesn't make me happy about running such programs - not for
> first 5 years or so.

Removing capabilities is an easy thing to add. Firstly the binary can do
it anyway even on 2.4, secondly you can add an ELF property easily
enough which says which capabilities this gets if it is marked setuid

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: Filesystem Capabilities in 2.6?"
Previous message: Adam J. Richter: "Re: Patch: 2.5.45 PCI Fixups for PCI HotPlug"