[systemd-devel] CapabilityBoundingSet vs. ExecReload (kill)

Nusenu nusenu at openmailbox.org
Thu Mar 19 10:04:46 PDT 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

>> That tells me that the ExecReload command (kill) is also
>> restricted by CapabilityBoundingSet. Is this expected [..]?
> 
> recent systemd has more problems in context of systemctl and
> restricting even PID1 itself in a way no longer be able to kill
> processes

thanks for the links. so you are saying this is just a bug and indeed
not expected?

thanks,
Nusenu
-----BEGIN PGP SIGNATURE-----

iQIcBAEBCgAGBQJVCwGpAAoJEFv7XvVCELh0DDUP/3RF5qsT44IWEunRwnuEQELc
rnGV4LcBMf+q09r5bYTN/HG1djaKlhePgUgP3QNLFhhETDJoARcgPA9aLKJTgl0h
n3gWrgzXyM6fJ5Yhd10AmexkVqb+Nv2dV2YHPQWE2d33idaitsKbO6756bVd0xjA
xUdqIdhP094fAj+enrW1Ui93k+eIY3PxuSI+3YOXkNSBsASEqJh+sXXE2A4OWWhz
GGnRi3ufusM8w3/zRw9rXgHXExDzQ512RdIly2F3S2BTsVo84IIYqzQ7VRCneVj7
Q7eysok/nSIFH1SgpnM1iSYZqke1qLAiIUIN2FGBla3UscDT7YpWNJsDx/fJ/CQE
ZC3r55EHU2TZIk5kI/FT/Xemt+YLTXxoi0XLkHky4saj4p20cG1Ciq+ACSCgXFDd
bZD8+3u2e7Xd3AWtEb4nYAUQtDSoTMaqnVgkc0QS68S2JLUyAqA5Pj8BNSN5qWiG
gAsKDPnWQRuLpxpyMuPmqv0gMSjA8+E4rdKkPZ0mxgBMF7n5RNFleichRbYa3q5K
LHpsi6XVrqQZOVp6gQfgcbGjNzqDwRfVOw5Duu3PZU0PJp8sntYt4sbMaJQ1p98g
n6+Qtz4pW8SUgSNyQIv6B1Fk6zIJgHRZUthVayie8w1ne/pypAhmqQFUA7Dea8n3
K4BSzHEkStVZ5PZHDqhd
=tCLM
-----END PGP SIGNATURE-----


More information about the systemd-devel mailing list