On 04/24/2015 01:46 PM, Tai Nguyen (tainguye) wrote: > Hi Stephen, > > Can you clarify ³adbd drops all capabilites from the bounding set² ? Also, > how is it related to setmask process which has suid itself?
See "Capability bounding" in https://source.android.com/devices/tech/security/enhancements/enhancements43.html grep PR_CAPBSET_DROP system/core/adb/* Once removed from the capability bounding set, you cannot get it back via exec'ing a setuid-root program. man 7 capabilities _______________________________________________ Seandroid-list mailing list Seandroid-list@tycho.nsa.gov To unsubscribe, send email to seandroid-list-le...@tycho.nsa.gov. To get help, send an email containing "help" to seandroid-list-requ...@tycho.nsa.gov.
