[Pkg-systemd-maintainers] Bug#739699: Bug#739699: Set capabilities for systemd-detect-virt
Michael Biebl
biebl at debian.org
Thu Feb 27 20:59:51 GMT 2014
Am 27.02.2014 12:56, schrieb Michael Stapelberg:
> control: tags -1 + pending
>
> Hi Michael,
>
> Michael Biebl <biebl at debian.org> writes:
>> $(SETCAP) cap_dac_override,cap_sys_ptrace=ep $(DESTDIR)$(bindir)/systemd-detect-virt
>>
>> Without those capabilities set, regular users only get a
>> "Failed to check for virtualization: Permission denied"
>> when trying to use this tool.
>>
>> We should evaluate whether to run setcap in postinst.
>> This would mean a dependency on libcap2-bin, though.
> Sounds reasonable. I pushed
> http://anonscm.debian.org/gitweb/?p=pkg-systemd/systemd.git;a=commitdiff;h=73b71c7fc5102b9749e1fd2811c2c5540aee8d39
Tollef, are you ok with having a hard dep on libcap2-bin in systemd?
I'm still a bit undecided myself.
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 884 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20140227/6697eac1/attachment-0002.sig>
More information about the Pkg-systemd-maintainers
mailing list