samshers asked:
From – man capabilities
UNIX implementations distinguish two categories of processes:
privileged processes (whose effective user ID is 0, referred to as
superuser or root), and unprivileged processes (whose effective UID is nonzero).
and
Starting with kernel 2.2, Linux divides the privileges traditionally
associated with superuser into distinct units, known as capabilities,
which can be independently enabled and disabled. Capabilities are a
per-thread attribute.
Does any Linux command or technique exist to determine the capabilities associated with a running process (or thread).
My answer:
The utility getpcaps will show the capabilities for a given PID.
From the man page:
SYNOPSIS
getpcaps pid…
DESCRIPTION
getpcaps displays the capabilities on the processes indicated by the
pid value(s) given on the commandline. The capabilities are displayed
in the cap_from_text(3) format.
View the full question and any other answers on Server Fault.
Image may be NSFW.
Clik here to view.
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.
The post How to list the capabilities associated with a process in *nix systems? appeared first on Ringing Liberty.