Re: CAP_SYSLOG, 2.6.38 and user space

From: Serge E. Hallyn
Date: Fri Feb 04 2011 - 12:14:27 EST

Next message: Oleg Nesterov: "Re: [PATCH 1/1] ptrace: make sure do_wait() won't hang afterPTRACE_ATTACH"
Previous message: Sri Ram Vemulpali: "Thread Affinity structure"
In reply to: Gergely Nagy: "Re: CAP_SYSLOG, 2.6.38 and user space"
Next in thread: david: "Re: CAP_SYSLOG, 2.6.38 and user space"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Quoting Gergely Nagy (algernon@xxxxxxxxxx):
> On Fri, 2011-02-04 at 16:05 +0000, Serge E. Hallyn wrote:
> > Quoting Serge E. Hallyn (serge@xxxxxxxxxx):
> > > >From 2d7408541dd3a6e19a4265b028233789be6a40f4 Mon Sep 17 00:00:00 2001
> > > From: Serge Hallyn <serge@peq.(none)>
> > > Date: Thu, 3 Feb 2011 09:26:15 -0600
> > > Subject: [PATCH 1/1] cap_syslog: don't refuse cap_sys_admin for now
> > >
> > > At 2.6.39 or 2.6.40, let's add a sysctl which defaults to 0. When
> > > 0, refuse if cap_sys_admin, if 1, then allow. This will allow
> > > users to acknowledge (permanently, if they must, using /etc/sysctl.conf)
> > > that they've seen the syslog message about cap_sys_admin being
> > > deprecated for syslog.
> > >
> > > Signed-off-by: Serge Hallyn <serge@xxxxxxxxxx>
>
> [...snip...]
>
> > James, do you mind taking this patch?
>
> Would it be possible to change the commit message to say that 1 would be
> the default? Just to avoid future confusion... (having it at 0 default
> later would just postpone the userspace breakage)
>

Good point, attached.

Next message: Oleg Nesterov: "Re: [PATCH 1/1] ptrace: make sure do_wait() won't hang afterPTRACE_ATTACH"
Previous message: Sri Ram Vemulpali: "Thread Affinity structure"
In reply to: Gergely Nagy: "Re: CAP_SYSLOG, 2.6.38 and user space"
Next in thread: david: "Re: CAP_SYSLOG, 2.6.38 and user space"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]