On Thu, Oct 28, 2010 at 12:44:52PM +0530, Rahul Sundaram wrote:
On 10/28/2010 01:11 AM, Kevin Fenzi wrote:
- #480 F15Feature - RemoveSETUID ( http://fedoraproject.org/wiki/Features/RemoveSETUID ) (nirik, 19:15:16)
- AGREED: the feature is approved. (nirik, 19:26:46)
This feature is now approved and I see bugs get filed. The documentation and guidelines are very incomplete. How does one figure out which file capabilities are needed by the programs I maintain that currently use setuid? Help, please.
More to the point, I can easily see the setuid bit easily on a binary.
How do I tell if these strange/hidden "capabilities" are present on a binary? 'ls' doesn't mention anything.
Rich.