* Stefan Hajnoczi (stefa...@redhat.com) wrote:
> On Thu, Jun 25, 2020 at 05:29:29PM +0100, Dr. David Alan Gilbert (git) wrote:
> > +/*
> > + * The modcaps option is a colon separated list of caps,
> > + * each preceded by either + or -.
> > + */
> > +while (lo->modcaps) {
> > +
On Thu, Jun 25, 2020 at 05:29:29PM +0100, Dr. David Alan Gilbert (git) wrote:
> +/*
> + * The modcaps option is a colon separated list of caps,
> + * each preceded by either + or -.
> + */
> +while (lo->modcaps) {
> +capng_act_t action;
> +int cap;
> +
> +
From: "Dr. David Alan Gilbert"
Allow capabilities to be added or removed from the allowed set for the
daemon; e.g.
default:
CapPrm: 88df
CapEff: 88df
-o modcaps=+sys_admin
CapPrm: 882000df
CapEff: 882000df
-o modcaps=+sys_admin:-chown
CapPrm: 8
