On Mon, Feb 22, 2016 at 09:15:37PM +0100, John Paul Adrian Glaubitz wrote: > I didn't say you should remove setuid altogether. I just said you should > use capabilties on Linux by default by setting: > > Depends: libcap2-bin [linux-any]
Recommends are installed by default, so the default on Linux is to use capabilities. Especially with systemd pulling it in as a hard requirement. > I'm aware we can't use capabilities on the non-Linux kernels yet, but > since dpkg allows us to set dependencies per arch or per kernel, I don't > see any particular problem adding libcap2-bin as to Depends for Linux > kernels. iputils-ping only builds for linux kernels. I already explained that it would be a policy violation for iputils-ping to have a Depends: libcap2-bin. This will change when libcap2-bin is Priority: important, at which point I'll add the dependency. Just because systemd is willing to violate policy doesn't mean I am! ;) noah
signature.asc
Description: Digital signature
