Mailinglist Archive: opensuse-kernel (95 mails)
| < Previous | Next > |
Re: [opensuse-kernel] Re: openSUSE Kernel: Push Patches Upstream
- From: Ludwig Nussel <ludwig.nussel@xxxxxxx>
- Date: Thu, 26 May 2011 16:33:56 +0200
- Message-id: <201105261633.56462.ludwig.nussel@suse.de>
Jeff Mahoney wrote:
Yes, in anticipation of getting rid of the patch that disables
fscaps by default I've switched the default from file caps off to
file caps on in chkstat. The patch that introduces
/sys/kernel/fscaps is now upstream (thanks Greg). So as soon as
someone submits the next upstream kernel update to Factory chkstat
can decide whether to use fscaps or suid dynamically.
cu
Ludwig
--
(o_ Ludwig Nussel
//\
V_/_ http://www.suse.de/
SUSE LINUX Products GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB
16746 (AG Nürnberg)
--
To unsubscribe, e-mail: opensuse-kernel+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-kernel+help@xxxxxxxxxxxx
This has now become interesting, it seems. I just noticed that /bin/ping
has capabilities set and is no longer suid root on two of my factory
machines. Consequently, it's not working unless I boot with file_caps on
the command line.
Yes, in anticipation of getting rid of the patch that disables
fscaps by default I've switched the default from file caps off to
file caps on in chkstat. The patch that introduces
/sys/kernel/fscaps is now upstream (thanks Greg). So as soon as
someone submits the next upstream kernel update to Factory chkstat
can decide whether to use fscaps or suid dynamically.
cu
Ludwig
--
(o_ Ludwig Nussel
//\
V_/_ http://www.suse.de/
SUSE LINUX Products GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB
16746 (AG Nürnberg)
--
To unsubscribe, e-mail: opensuse-kernel+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-kernel+help@xxxxxxxxxxxx
| < Previous | Next > |