Re: [PATCH 2/3] p9auth: add CAP_GRANT_ID to authorize use of/dev/caphash

From: Greg KH
Date: Tue Apr 20 2010 - 23:04:42 EST

Next message: Greg KH: "Re: [PATCH 3/3] p9auth: add p9auth driver"
Previous message: KAMEZAWA Hiroyuki: "Re: [PATCH 01/14] mm,migration: Take a reference to the anon_vmabefore migrating"
In reply to: Serge E. Hallyn: "[PATCH 2/3] p9auth: add CAP_GRANT_ID to authorize use of/dev/caphash"
Next in thread: Serge E. Hallyn: "[PATCH 3/3] p9auth: add p9auth driver"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Apr 20, 2010 at 08:28:15PM -0500, Serge E. Hallyn wrote:
>
> Granting userid capabilities to another task is a dangerous
> privilege. Don't just let file permissions authorize it.
> Define CAP_GRANT_ID as a new capability needed to write to
> /dev/caphash.

Isn't there some man page that also needs to be updated when you add
something like this to the user/kernel api?

thanks,

greg k-h
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "Re: [PATCH 3/3] p9auth: add p9auth driver"
Previous message: KAMEZAWA Hiroyuki: "Re: [PATCH 01/14] mm,migration: Take a reference to the anon_vmabefore migrating"
In reply to: Serge E. Hallyn: "[PATCH 2/3] p9auth: add CAP_GRANT_ID to authorize use of/dev/caphash"
Next in thread: Serge E. Hallyn: "[PATCH 3/3] p9auth: add p9auth driver"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]