Posted Nov 30, 2006 10:10 UTC (Thu) by NAR
Parent article: File-based capabilities
A full capability-based system would approach SELinux in complexity, and may thus beyond the ability of most people to manage.
I guess it may, but shouldn't this kind of things be managed by the distributors? Shouldn't rpm/dpkg set these bits up properly?
to post comments)