> Horst von Brand writes:
> > Richard Gooch <rgooch@atnf.csiro.au> said:
> >
> > [...]
> >
> > > This to me is one of the real blind-spots of some people who are
> > > pushing capabilities. There is absolutely no need to remove the
> > > privileges of the root account. By default root has all capabilities.
> >
> > The whole idea of capabilities is to get rid of all-powerful users, to
> > split the root powers among several people where _nobody_ has all
> > powers. Any scheme that keeps a root of some sort is broken.
>
> Whoever can grant caps is in effect all-powerful.
but even if you're _potentially_ all-powerful, you can't avoid logging
that you grant yourself/someone caps which you better don't...
at least the first log entry can't be avoided in a reasonable system,
and that's enough!
Harald
--
All SCSI disks will from now on ___ _____
be required to send an email notice 0--,| /OOOOOOO\
24 hours prior to complete hardware failure! <_/ / /OOOOOOOOOOO\
\ \/OOOOOOOOOOOOOOO\
\ OOOOOOOOOOOOOOOOO|//
Harald Koenig, \/\/\/\/\/\/\/\/\/
Inst.f.Theoret.Astrophysik // / \\ \
koenig@tat.physik.uni-tuebingen.de ^^^^^ ^^^^^
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/