On Tue, Sep 18, 2018 at 03:56:37AM -0700, Richard Cochran wrote: > On Fri, Aug 10, 2018 at 04:37:04PM +0200, Miroslav Lichvar wrote: > > This patchset implements a support for dropping all root privileges > > except adjusting the clock and binding to a privileged port, using the > > libcap library. > > I haven't forgotten about this, but I wanted to see how we could avoid > adding the new dependency on libcap. I've dug up materials on this, > but haven't had time to go through it again. IIRC, using the kernel > API directly is easy.
I'm looking at the capset(2) man page and it doesn't look too bad. Do you have any suggestions on whether/how should be the user and directories for sockets configurable? -- Miroslav Lichvar _______________________________________________ Linuxptp-devel mailing list Linuxptp-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/linuxptp-devel