FilesystemCapabilties
Differences between revisions 2 and 3
474
Comment:
|
564
|
Deletions are marked like this. | Additions are marked like this. |
Line 11: | Line 11: |
* libcap2's pam_cap is not designed for least-privilege, has unexpected parsing results |
Dumping ground for notes on supporting filesystem capabilities.
- "cp -a" works
- "rsync -AXa" works
- cpio fails
- tar fails
NFS does not support xattr (patches for NFSv3 exist: http://marc.info/?l=linux-security-module&m=126804495005609&w=2)
- libcap2's pam_cap is not designed for least-privilege, has unexpected parsing results
Security/FilesystemCapabilties (last edited 2014-12-19 01:09:24 by kees)