"Mike A. Harris" <mharris@meteng.on.ca> writes:
> On Tue, 25 Jul 2000, Khimenko Victor wrote:
>
>>Date: Tue, 25 Jul 2000 20:37:50 +0400 (MSD)
>>From: Khimenko Victor <khim@sch57.msk.ru>
>>To: mharris@meteng.on.ca, linux-kernel@vger.rutgers.edu
>>Subject: Re: Capabilities..
>>
>>In <Pine.LNX.4.21.0007251109190.30742-100000@asdf.capslock.lan> Mike A. Harris (mharris@meteng.on.ca) wrote:
>>> How does one exercise the CAP_SYSPCAP capability? In other
>>> words, if root starts up with all capabilities as defined in the
>>> cap-bound set, how does root pass a capability to another PID?
>>
>>With capset(2) obviously...
>
> Wasn't too obvious to me:
>
> 2 root@asdf:/usr/man/man2# man capset
> No manual entry for capset
> 2 root@asdf:/usr/man/man2# man 2 capset
> No entry for capset in section 2 of the manual
> 2 root@asdf:/usr/man/man2# whatis capset
> capset: nothing appropriate
> 2 root@asdf:/usr/man/man2# apropos capset
> capset: nothing appropriate
> 2 root@asdf:/usr/man/man2# locate capset
> 2 root@asdf:/usr/man/man2#
>
> I'll go search freshmeat or something I guess...
>
>
>>> Is there a userland utility that root can run to give other PID's
>>> other capabilities?
>>
>>I do not remember name but I saw such utility somewhere...
>
> Ok, thats good, at least I know I wont be searching in vain then.
In case you are still looking, look at your favorite mirror of:
ftp://linux.kernel.org/pub/linux/libs/security/linux-privs
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Mon Jul 31 2000 - 21:00:20 EST