[syslog-ng] [Bug 108] 2.6.38+ will require CAP_SYSLOG (CAP_SYS_ADMIN not enough)
bugzilla at bugzilla.balabit.com
bugzilla at bugzilla.balabit.com
Tue Feb 22 15:22:58 CET 2011
https://bugzilla.balabit.com/show_bug.cgi?id=108
--- Comment #16 from Balazs Scheidler <bazsi at balabit.hu> 2011-02-22 15:22:58 ---
Hm.. could anyone come up with a patch that validates if libcap knows about
CAP_SYSLOG (perhaps configure time should suffice), and if it does it either checks the
sysctl file, or the behaviour at runtime and adapts syslog-ng accordingly?
I'd love to be prepared for a future kernel change and work with as less privileges as possible.
Currently, CAP_SYS_ADMIN is enabled, which is a rather big capability.
--
Configure bugmail: https://bugzilla.balabit.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the syslog-ng
mailing list