when root is reading the capabilities via capget on a plain suse 6.3 system with kernel 2.2.13 the result is: effective: 0xFFFFFEFF (bit 8 cleared) permitted: 0xFFFFFEFF (bit 8 cleared) inherited: 0xFFFFFEFF (bit 8 cleared) with kernel 2.2.16 the result is: effective: 0xFFFFFEFF (bit 8 cleared) permitted: 0xFFFFFEFF (bit 8 cleared) inherited: 0x0 Every bit can be set via capset, except bit 8. I think the capabilities with bit 8 cleared are set by init, but I wonder what the reason is that even root is not allowed to use or set this capability ? looking in capabilities.h couldn't explain this. Please forgive me if this is the wrong list, but I think it is security-related. Andreas ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been scanned for the presence of computer viruses. **********************************************************************