Manuel Selva
Reputation: 19050
How to add Linux capability for CAP_IPC_OWNER in limits.conf?
I have a /etc/security/limits.conf file as follows
manu - memlock unlimited
manu - rtprio 100
manu - nice 40
manu - stack unlimited
Now I want the user "manu" to be able to use the shmctl function requiring CAP_IPC_OWNER, how should I modify this file to have this capability? Is it possible?
Upvotes: 1
Views: 2273
Answers (1)
ldx
Reputation: 4074
That's not the place to set a capability. Use the system call capset() to do that, e.g. you start your process as root, set this capability with capset(), and then you can change your UID; or you can do that from another process but you need the pid.
An alternative is to use setcap() to set this as an attribute on your executable, see setcap(8).
Upvotes: 2
Related Questions
- linux limits.conf not working?
- setuid(0) with CAP_SETUID
- How to set CAP_SYS_NICE capability to a Linux user?
- How to set limits from /etc/security/limits.conf in a Docker container?
- Test for linux CAP_FOWNER capability in C?
- How to use CAP_SYS_ADMIN
- How to use CAP_SYS_BOOT capability?
- which is better way to edit RLIMIT_NPROC value
- How to raise ulimit hard limit for real time priority programmatically with setuid or capability CAP_SYS_RESOURCE?
- Process on linux ignoring resource limits