[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20071101215424.GA27788@duck.suse.cz>
Date: Thu, 1 Nov 2007 22:54:24 +0100
From: Jan Kara <jack@...e.cz>
To: Olaf Dietsche <olaf+list.linux-kernel@...fdietsche.de>
Cc: linux-kernel@...r.kernel.org
Subject: Re: [PATCH] 2.6.23: Filesystem capabilities 0.17
On Thu 01-11-07 20:49:32, Olaf Dietsche wrote:
> Jan Kara <jack@...e.cz> writes:
>
> >> This patch implements filesystem capabilities. It allows to
> >> run privileged executables without the need for suid root.
> > Hmm, is there some "design document" so that one does not have to poke
> > through the code and find out what it's actually trying to do?
>
> What do you mean with "trying to do"? I thought this is obvious, it
> provides executables with filesystem capabilities.
Well, yes, that was obvious but I rather meant "how is it doing it?".
So where does it store these bits and such.
> > Also why don't you use extended attributes or store them inside the
> > executable like Pavel did (you link it from your web page).
>
> The links from my web page are there to show alternatives, nothing
> else. When I started in 2002, xattr where pretty new or nonexistant.
OK, I see. I'm not sure it's going to make it when we already have an
implementation of the functionality in kernel as Serge mentioned.
Honza
--
Jan Kara <jack@...e.cz>
SUSE Labs, CR
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists