|
|
|
|
|
|
by ajross
233 days ago
|
|
|
This is misunderstanding what the feature is for. The point wasn't to architect a "capabilities-based system" from scratch (see LSM/selinux/apparmor for work in that space). It was to split up the very practical set of "things setuid is traditionally used for" into finer chunks. The setuid binaries already existed, and this was a means to making them (much) more secure without API changes. |
|
|