Displaying 1 result from an estimated 1 matches for "cap_clear".
2007 Feb 23
0
Simple patch
...9;s error log");
+ i_info("test message, monkeys");
+ /* drop capabilities that we don't need, be very restrictive */
+#ifdef HAVE_LIBCAP
+ i_info("Found capability support, dropping unnecessary root
priviledges");
+ caps = cap_init();
+ cap_clear(caps);
+ cap_set_flag(caps, CAP_PERMITTED,
sizeof(suidcaps)/sizeof(cap_value_t), suidcaps, CAP_SET);
+ cap_set_flag(caps, CAP_EFFECTIVE,
sizeof(suidcaps)/sizeof(cap_value_t), suidcaps, CAP_SET);
+ cap_set_proc(caps);
+ cap_free(caps);
+#endif
+
lib_signals_init(...