Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

Jan Kara <[EMAIL PROTECTED]> writes: > On Thu 01-11-07 23:22:51, Olaf Dietsche wrote: >> >> The bits are stored in a sparse file named /.capabilities in the >> directory of the mount point, where the corresponding executable >> lives. The inode number of the file is the index into this file. >

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

On Thu 01-11-07 23:22:51, Olaf Dietsche wrote: > Jan Kara <[EMAIL PROTECTED]> writes: > > > On Thu 01-11-07 20:49:32, Olaf Dietsche wrote: > >> Jan Kara <[EMAIL PROTECTED]> writes: > >> > >> >> This patch implements filesystem capabilities. It allows to > >> >> run privileged executables without

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

Casey Schaufler <[EMAIL PROTECTED]> writes: > --- Olaf Dietsche <[EMAIL PROTECTED]> wrote: > >> The bits are stored in a sparse file named /.capabilities in the >> directory of the mount point, where the corresponding executable >> lives. The inode number of the file is the index into this file. >

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

--- Olaf Dietsche <[EMAIL PROTECTED]> wrote: > Jan Kara <[EMAIL PROTECTED]> writes: > > > On Thu 01-11-07 20:49:32, Olaf Dietsche wrote: > >> Jan Kara <[EMAIL PROTECTED]> writes: > >> > >> >> This patch implements filesystem capabilities. It allows to > >> >> run privileged executables without

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

Jan Kara <[EMAIL PROTECTED]> writes: > On Thu 01-11-07 20:49:32, Olaf Dietsche wrote: >> Jan Kara <[EMAIL PROTECTED]> writes: >> >> >> This patch implements filesystem capabilities. It allows to >> >> run privileged executables without the need for suid root. >> > Hmm, is there some "design doc

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

On Thu 01-11-07 20:49:32, Olaf Dietsche wrote: > Jan Kara <[EMAIL PROTECTED]> writes: > > >> This patch implements filesystem capabilities. It allows to > >> run privileged executables without the need for suid root. > > Hmm, is there some "design document" so that one does not have to poke > >

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

"Serge E. Hallyn" <[EMAIL PROTECTED]> writes: > Quoting Olaf Dietsche ([EMAIL PROTECTED]): >> This patch implements filesystem capabilities. It allows to >> run privileged executables without the need for suid root. >> >> Changes: >> - updated to 2.6.23 >> - fix const correctness >> - fix securee

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

Jan Kara <[EMAIL PROTECTED]> writes: >> This patch implements filesystem capabilities. It allows to >> run privileged executables without the need for suid root. > Hmm, is there some "design document" so that one does not have to poke > through the code and find out what it's actually trying to

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

Quoting Olaf Dietsche ([EMAIL PROTECTED]): > This patch implements filesystem capabilities. It allows to > run privileged executables without the need for suid root. > > Changes: > - updated to 2.6.23 > - fix const correctness > - fix secureexec > > This patch is available at: >

Re: [PATCH] 2.6.23: Filesystem capabilities 0.17

Hello, > This patch implements filesystem capabilities. It allows to > run privileged executables without the need for suid root. Hmm, is there some "design document" so that one does not have to poke through the code and find out what it's actually trying to do? Also why don't you use extende

[PATCH] 2.6.23: Filesystem capabilities 0.17

This patch implements filesystem capabilities. It allows to run privileged executables without the need for suid root. Changes: - updated to 2.6.23 - fix const correctness - fix secureexec This patch is available at: Regards, Olaf. fs/Kconfig