[GLLUG] Does anyone use Linux capabilities ?
Alain Williams
addw at phcomp.co.uk
Tue Oct 28 17:00:51 UTC 2014
On Tue, Oct 28, 2014 at 04:55:45PM +0000, Justin Perreault wrote:
> On Tue, 2014-10-28 at 16:47 +0000, Alain Williams wrote:
> > Just wondering ... these have been in the kernel for getting on to 20 years. One
> > of those things on my 'must get round to learning & using' list.
> >
> > Do any of you use them ? If so, what for ?
> >
> > If you do not know what I am talking about go:
> >
> > man capabilities
>
> From reading man capabilities it looks like many of the functions are
> part/core to commonly used commands like chown.
What they do is say if a process is capable of doing something. The idea was to
remove the binary 'you are root and can do anything' and 'you cannot do a bunch
of things'.
Eg: you need CAP_CHOWN to change file ownership.
> Are there particular cap_???? you are wondering about?
No.
--
Alain Williams
Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer.
+44 (0) 787 668 0256 http://www.phcomp.co.uk/
Parliament Hill Computers Ltd. Registration Information: http://www.phcomp.co.uk/contact.php
#include <std_disclaimer.h>
More information about the GLLUG
mailing list