Tools
LCAP Linux Kernel Capability Remover
by Spoon, spoon (at) ix.netcom (dot) com [email concealed]
Platforms: Linux
Categories: Hardening, Linux
Version: 0.0.2
URL: http://pweb.netcom.com/~spoon/lcap/
"Capabilities" are a form of kernel-based access control. Linux kernel versions 2.2.11 and greater include the idea of a "capability bounding set". The bounding set is a list of capabilities that can be held by any process on the system. If a capability is removed from the bounding set, the capability may not be used by any process on the system (even processes owned by root).

LCAP allows a system administrator to remove specific capabilities from the kernel in order to make the system more secure. LCAP modifies the value in the sysctl file "/proc/sys/kernel/cap-bound".

    Tools
 
Comments Mode:
LCAP Linux Kernel Capability Remover 2002-11-11
weltseer (at) buzco.nyct (dot) net [email concealed]
LCAP Linux Kernel Capability Remover 2003-03-19
Troels Arvin (1 replies)
LCAP Linux Kernel Capability Remover 2003-09-17
Anonymous (2 replies)
LCAP Linux Kernel Capability Remover 2006-03-25
Anonymous (1 replies)


 

Privacy Statement
Copyright 2010, SecurityFocus