Hi everyone, A couple of days ago, bonsaikitten (Patrick), kerframil (Kerin Millar) and myself were talking about other distros moving away from setuid binaries towards caps. Openwall and Fedora are now setuid-less [1]. Some googling showed that Constanze has done quite a bit of work in the area and that there was a consensus to include functions to set caps within portage [2]. I don't know what, if anything has been done since then, but I'd like to lend my support.
Ref [1] http://lwn.net/Articles/420969/ [2] http://www.gossamer-threads.com/lists/gentoo/dev/226948 -- Anthony G. Basile, Ph.D. Gentoo Linux Developer [Hardened] E-Mail : bluen...@gentoo.org GnuPG FP : 8040 5A4D 8709 21B1 1A88 33CE 979C AF40 D045 5535 GnuPG ID : D0455535
