Re: [opensuse] Re: Should openSUSE review it's Security Policies?



Roger Oberholtzer wrote:

On Thu, 2012-03-01 at 13:02 +0100, Per Jessen wrote:
Roger Oberholtzer wrote:

Well, these suppliers provide, quite often, QT apps that allow one
to configure their devices. They need to first locate them. A
network broadcast is what they would like to do. Except on Linux
this requires root permissions.

I'm not at all sure, but isn't this managed with capabilities? There
is a CAP_NET_BROADCAST (although the man page says "unused").

You have my attention. Where is this?


Well, maybe start with "man capabilities". I think that is where I saw
CAP_NET_BROADCAST mentioned. I have never played with any of this, but
my understanding is that you can manage various capabilities on a
per-process or per-user basis. I'm grasping at straws, but I'm sure
somebody here will have an actual understanding of this.



--
Per Jessen, Zürich (11.2°C)

--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx



Relevant Pages

  • Re: [PATCH] capabilites, take 2
    ... >>This is what I always thought Linux capabilities meant to be. ... > run on a pre-capability Linux kernel. ... I think this emulates the current linux caps quite nicely. ...
    (Linux-Kernel)
  • Re: Which Firewall
    ... that if no one you know has Linux skills, ... iptables based firewalls on a pair of boxes running Debian ... mail and proxying on the inside firewall, ... to allow the local admin to 'toggle' various capabilities on ...
    (comp.security.firewalls)
  • Re: [PATCH] capabilites, take 2
    ... > This is what I always thought Linux capabilities meant to be. ... Before writing the kernel code, ... We haven't escaped UID-as-priv if server apps and setuid apps ...
    (Linux-Kernel)
  • Re: OT: browser hostile sites
    ... just what capabilities do you really need? ... there are plenty of draw products in linux. ... These are separate programs in the linux world. ... upgrade files / system consists of files 1meg or less. ...
    (sci.electronics.design)
  • Re: Returning current user from SQLServer
    ... Robman wrote: ... understanding was that if you wanted to use the new capabilities of ... Access 2007 then you had to save your db in the new format - accdb as ...
    (microsoft.public.access.security)