[Pdns-users] why CAP_CHOWN?
bert hubert
bert.hubert at powerdns.com
Sat May 16 20:25:39 UTC 2020
On Sat, May 16, 2020 at 08:42:21PM +0200, Michael Ströder via Pdns-users wrote:
> But I wonder why CAP_CHOWN is set in CapabilityBoundingSet= and
> AmbientCapabilities= and I could not find a reason in the git history of
> that file.
Hi Michael,
We chown the UNIX domain control socket to the 'setgid' and 'setuid'
setting.
This is likely why we need CAP_CHOWN.
Good luck!
Bert
More information about the Pdns-users
mailing list