Re: Preparing Debian for using capabilities: file ownership.

To: Wichert Akkerman <wichert@cistron.nl>
Cc: debian-policy@lists.debian.org
Subject: Re: Preparing Debian for using capabilities: file ownership.
From: Britton <fsblk@aurora.uaf.edu>
Date: Mon, 25 Sep 2000 10:57:05 -0800 (AKDT)
Message-id: <[🔎] Pine.OSF.4.21.0009251046330.19331-100000@aurora.uaf.edu>
In-reply-to: <[🔎] 20000923003038.A1146@cistron.nl>

> > But anyway, capabilities are useable without fs support.
> 
> Definitely. Some daemons like proftpd already use them.
> 
> Also, keep in mind that the set of capilities differs between 2.2 and
> 2.4 kernels if memory serves me correctly, and people are still looking
> at making sure the current set is an optimal one. (Fun assignment: see
> which capabilities can lead to root access. It turns out to be a
> surprisingly large set).

Well said.  Capabilities add a bunch of complexity and granularity of
dubious usefulness, and will almost certainly turn out to introduce masses
of security holes as they get used and misused.  The traditional model has
the great advantages of simplicity and not offering more than it can
really deliver.  Also keep in mind that capabilities are based on a
now-dead POSIX standard from a commitee which couldn't decide in over 10
years of work what unix security meant.  I won't bother with capabilities
until they get rammed down my throat, and I kind of hope debian isn't the
first to do the ramming.

Britton

Reply to:

References:
- Re: Preparing Debian for using capabilities: file ownership.
  - From: Wichert Akkerman <wichert@cistron.nl>

Prev by Date: Re: : Question regarding actions to take on --purge of a package.
Next by Date: Re: Preparing Debian for using capabilities
Previous by thread: Re: Preparing Debian for using capabilities: file ownership.
Next by thread: Re: Preparing Debian for using capabilities: file ownership.
Index(es):
- Date
- Thread