> In snapd 2.71 (the first deb release to go out since 2.68.5) snap-confine > setuid is not set, and > capabilities are set instead in the post scriptlet.
Thanks, you are right. I assumed we would have to remove the suid in postinst, but the file is just packaged correctly with capabilities instead of suid, and dh_fixperms is excluding it in d/rules. It works as designed. Nice improvement, btw! We rarely see capabilities being used in executables like this. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2118396 Title: [SRU] 2.71 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/snapd/+bug/2118396/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
