On Wed, Oct 16, 2013 at 06:18:16PM -0700, Eric W. Biederman wrote: > That doesn't look bad but it does need capable(CAP_SETUID) && > capable(CAP_SETGID) or possibly something a little more refined.
D'oh > I don't think we want file descriptor passing to all of a sudden become > a grant of privilege, beyond what the passed fd can do. Definitely. And an extra ) to make it compile wouldn't hurt either... -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
