Re: Capabilities help
From: Chris Wright (chrisw_at_osdl.org)
Date: 01/14/04
- Previous message: David Rees: "Re: modprobe failed: digest_null"
- In reply to: john moser: "Capabilities help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Tue, 13 Jan 2004 17:05:05 -0800 To: john moser <bluefoxicy@linux.net>
* john moser (bluefoxicy@linux.net) wrote:
> I know this is working, because I checked my code over, plus the double
> chroot / fails. I can still load modules, change the system time,
> and administrate the network.
First are you sure you dropped those particular bits? Assuming you are,
what's your .config look like (esp. CONFIG_SECURITY_*)? Can you show me
that your process is dropping a capability (say from /proc/<pid>/status),
and that the capability is still enabled?
thanks,
-chris
-- Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
- Previous message: David Rees: "Re: modprobe failed: digest_null"
- In reply to: john moser: "Capabilities help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
