Re: [PATCH v2 01/14] staging: lustre: llite: Remove filtering of seclabel xattr

2017-08-19 Thread James Simmons
> On Mon, Aug 14, 2017 at 12:20:51PM -0400, James Simmons wrote: > > From: Robin Humble > > > > The security.capability xattr is used to implement File > > Capabilities in recent Linux versions. Capabilities are a > > fine grained approach to granting executables

Re: [PATCH v2 01/14] staging: lustre: llite: Remove filtering of seclabel xattr

2017-08-19 Thread James Simmons
> On Mon, Aug 14, 2017 at 12:20:51PM -0400, James Simmons wrote: > > From: Robin Humble > > > > The security.capability xattr is used to implement File > > Capabilities in recent Linux versions. Capabilities are a > > fine grained approach to granting executables elevated > > privileges. eg.

Re: [PATCH v2 01/14] staging: lustre: llite: Remove filtering of seclabel xattr

2017-08-17 Thread Greg Kroah-Hartman
On Mon, Aug 14, 2017 at 12:20:51PM -0400, James Simmons wrote: > From: Robin Humble > > The security.capability xattr is used to implement File > Capabilities in recent Linux versions. Capabilities are a > fine grained approach to granting executables elevated >

Re: [PATCH v2 01/14] staging: lustre: llite: Remove filtering of seclabel xattr

2017-08-17 Thread Greg Kroah-Hartman
On Mon, Aug 14, 2017 at 12:20:51PM -0400, James Simmons wrote: > From: Robin Humble > > The security.capability xattr is used to implement File > Capabilities in recent Linux versions. Capabilities are a > fine grained approach to granting executables elevated > privileges. eg. /bin/ping can

[PATCH v2 01/14] staging: lustre: llite: Remove filtering of seclabel xattr

2017-08-14 Thread James Simmons
From: Robin Humble The security.capability xattr is used to implement File Capabilities in recent Linux versions. Capabilities are a fine grained approach to granting executables elevated privileges. eg. /bin/ping can have capabilities cap_net_admin, cap_net_raw+ep

[PATCH v2 01/14] staging: lustre: llite: Remove filtering of seclabel xattr

2017-08-14 Thread James Simmons
From: Robin Humble The security.capability xattr is used to implement File Capabilities in recent Linux versions. Capabilities are a fine grained approach to granting executables elevated privileges. eg. /bin/ping can have capabilities cap_net_admin, cap_net_raw+ep instead of being setuid root.