[systemd-commits] TODO
David Herrmann
dvdhrm at kemper.freedesktop.org
Sun Jan 5 05:00:44 PST 2014
TODO | 1 +
1 file changed, 1 insertion(+)
New commits:
commit e10e429f2dcbb586215e65f62847f40c7d8b5956
Author: David Herrmann <dh.herrmann at gmail.com>
Date: Sun Jan 5 13:59:12 2014 +0100
TODO: extend login capability note
We cannot remove CAP_SYS_ADMIN, which basically makes removing all other
capabilities useless. Anyhow, still wouldn't hurt checking whether stuff
like CAP_KILL can be dropped from logind.
diff --git a/TODO b/TODO
index df57880..0e9a01d 100644
--- a/TODO
+++ b/TODO
@@ -86,6 +86,7 @@ Features:
* given that logind now lets PID 1 do all nasty work, we can
probably reduce the capability set it retains substantially.
+ (we need CAP_SYS_ADMIN for drmSetMaster(), so maybe not worth it)
* btrfs raid assembly: some .device jobs stay stuck in the queue
More information about the systemd-commits
mailing list