Re: [patch] file capabilities: Add no_file_caps switch

From: Serge E. Hallyn
Date: Wed Aug 27 2008 - 20:48:21 EST


Quoting James Morris (jmorris@xxxxxxxxx):
> On Wed, 27 Aug 2008, David Howells wrote:
>
> > (2) Neuter sys_capset(). I've been holding this off for the next merge
> > window as it isn't a bugfix, unlike (1). Perhaps I should ask James to
> > push it to Linus. James?
>
> Linus only pulled the PF_SUPERPRIV fix once the sys_capset change was
> removed from the patch. It really does need to be a bugfix at this stage.

Ok, sorry, of course that makes sense. I was just confused about where
the patch was originally heading.

Would it be appropriate to put the capset neutering patch in your
security-testing tree, James, or does that feed straight into
linux-next?

thanks,
-serge
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/