On Wed, Nov 12, 2003 at 07:35:05AM -0700, Hans Fugal wrote: > So yes, it is broken on purpose (because the real solution is not in > place). No, it doesn't make capabilities useless, it just makes it > impossible to use CAP_SETPCAP.
And if i enable SETPCAP for init, will init drop that capability? Will it pass it to all started programs? If init by default drops this capability, I dont see a reason for the default kernel to remove that capability. Well at least a command line option should allow it and not recompile. I mean, if it is so complicated to change this, it cant be right to enable it :) Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (O____O) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
