diff options
| author | Martin Willi <martin@strongswan.org> | 2007-09-28 07:04:09 +0000 |
|---|---|---|
| committer | Martin Willi <martin@strongswan.org> | 2007-09-28 07:04:09 +0000 |
| commit | 055d016b49e88328ff3a2b433188c1109a9cf8e3 (patch) | |
| tree | 7c907c123a371b429bca2647aee50b25a36751e0 | |
| parent | 780050cbc3fd97fbddabc89bd7d7bbd1ef008738 (diff) | |
| download | strongswan-055d016b49e88328ff3a2b433188c1109a9cf8e3.tar.bz2 strongswan-055d016b49e88328ff3a2b433188c1109a9cf8e3.tar.xz | |
changed inheritable capability set to the permitted one to execute firewall script with CAP_NET_ADMIN
| -rw-r--r-- | src/charon/daemon.c | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/src/charon/daemon.c b/src/charon/daemon.c index 56b737ad6..c9c632def 100644 --- a/src/charon/daemon.c +++ b/src/charon/daemon.c @@ -251,8 +251,7 @@ static void drop_capabilities(private_daemon_t *this, bool full) hdr.version = _LINUX_CAPABILITY_VERSION; hdr.pid = 0; - data.effective = data.permitted = keep; - data.inheritable = 0; + data.inheritable = data.effective = data.permitted = keep; if (capset(&hdr, &data)) { |