Commit 5cbb278 introduced cap_sys_admin support, and enforced checks for
both binds and servers. However, when binding into a namespace, the bind
is done before dropping privileges. Hence, checking that we have
cap_sys_admin capability set in this case is not needed (and it would
decrease security
Hi Damien!
On Fri, Dec 20, 2024 at 01:36:34PM +, Damien Claisse wrote:
> Commit 5cbb278 introduced cap_sys_admin support, and enforced checks for
> both binds and servers. However, when binding into a namespace, the bind
> is done before dropping privileges. Hence, checking that we have
> cap_
2 matches
Mail list logo
