John
Reputation: 1129
Does a process that have the root user always have all of the capabilities available in Linux?
In Linux, a process that have a non-root user can have some capabilities assigned to it to increase its privileges.
And a process that have the root user have all of the capabilities available, but can such a process have some of its capabilities removed (either manually or automatically in certain situations)?
Upvotes: 2
Views: 174
Answers (1)
OkieOth
Reputation: 3714
I don't think so, because root is allowed to access everything - per os design.
That's the reason why modern Linux distributions often hides the root user and work with the sudo approach instead.
Upvotes: 1
Related Questions
- How to find out what Linux capabilities a process requires to work?
- File capabilities do not transfer to process once executed
- Linux capabilities to launch process as root from a user mode program in C++
- Request Linux Capabilities During Runtime
- how does a process in linux decides privileges it has
- Do Linux capabilities partition the possible privileged operations?
- How to compute the minimal capabilities' set for a process?
- Grant capabilities to a running process
- What decides privilege level of the process?
- Can a program adopt the permissions of the user, or is it completely restricted by owner?