Skip to content

Instantly share code, notes, and snippets.

@dav1x

dav1x/gist:3597a490f81eabe7fdbe0b4110541dfc

Created March 31, 2017 15:53
Show Gist options
  • Save dav1x/3597a490f81eabe7fdbe0b4110541dfc to your computer and use it in GitHub Desktop.
Save dav1x/3597a490f81eabe7fdbe0b4110541dfc to your computer and use it in GitHub Desktop.
Download ZIP
Raw
gistfile1.txt
> "NAME=$NAME",
20,216c20,58
< "capabilities": {
< "bounding": [
< "CAP_CHOWN",
< "CAP_FOWNER",
< "CAP_FSETID",
< "CAP_KILL",
< "CAP_SETGID",
< "CAP_SETUID",
< "CAP_SETPCAP",
< "CAP_LINUX_IMMUTABLE",
< "CAP_NET_BIND_SERVICE",
< "CAP_NET_BROADCAST",
< "CAP_NET_ADMIN",
< "CAP_NET_RAW",
< "CAP_IPC_LOCK",
< "CAP_IPC_OWNER",
< "CAP_SYS_MODULE",
< "CAP_SYS_RAWIO",
< "CAP_SYS_CHROOT",
< "CAP_SYS_PTRACE",
< "CAP_SYS_PACCT",
< "CAP_SYS_ADMIN",
< "CAP_SYS_BOOT",
< "CAP_SYS_NICE",
< "CAP_SYS_RESOURCE",
< "CAP_SYS_TIME",
< "CAP_SYS_TTY_CONFIG",
< "CAP_MKNOD",
< "CAP_LEASE",
< "CAP_AUDIT_WRITE",
< "CAP_AUDIT_CONTROL",
< "CAP_SETFCAP",
< "CAP_DAC_OVERRIDE",
< "CAP_MAC_OVERRIDE",
< "CAP_DAC_READ_SEARCH",
< "CAP_MAC_ADMIN",
< "CAP_SYSLOG",
< "CAP_WAKE_ALARM",
< "CAP_BLOCK_SUSPEND"
< ],
< "permitted": [
< "CAP_CHOWN",
< "CAP_FOWNER",
< "CAP_FSETID",
< "CAP_KILL",
< "CAP_SETGID",
< "CAP_SETUID",
< "CAP_SETPCAP",
< "CAP_LINUX_IMMUTABLE",
< "CAP_NET_BIND_SERVICE",
< "CAP_NET_BROADCAST",
< "CAP_NET_ADMIN",
< "CAP_NET_RAW",
< "CAP_IPC_LOCK",
< "CAP_IPC_OWNER",
< "CAP_SYS_MODULE",
< "CAP_SYS_RAWIO",
< "CAP_SYS_CHROOT",
< "CAP_SYS_PTRACE",
< "CAP_SYS_PACCT",
< "CAP_SYS_ADMIN",
< "CAP_SYS_BOOT",
< "CAP_SYS_NICE",
< "CAP_SYS_RESOURCE",
< "CAP_SYS_TIME",
< "CAP_SYS_TTY_CONFIG",
< "CAP_MKNOD",
< "CAP_LEASE",
< "CAP_AUDIT_WRITE",
< "CAP_AUDIT_CONTROL",
< "CAP_SETFCAP",
< "CAP_DAC_OVERRIDE",
< "CAP_MAC_OVERRIDE",
< "CAP_DAC_READ_SEARCH",
< "CAP_MAC_ADMIN",
< "CAP_SYSLOG",
< "CAP_WAKE_ALARM",
< "CAP_BLOCK_SUSPEND"
< ],
< "inheritable": [
< "CAP_CHOWN",
< "CAP_FOWNER",
< "CAP_FSETID",
< "CAP_KILL",
< "CAP_SETGID",
< "CAP_SETUID",
< "CAP_SETPCAP",
< "CAP_LINUX_IMMUTABLE",
< "CAP_NET_BIND_SERVICE",
< "CAP_NET_BROADCAST",
< "CAP_NET_ADMIN",
< "CAP_NET_RAW",
< "CAP_IPC_LOCK",
< "CAP_IPC_OWNER",
< "CAP_SYS_MODULE",
< "CAP_SYS_RAWIO",
< "CAP_SYS_CHROOT",
< "CAP_SYS_PTRACE",
< "CAP_SYS_PACCT",
< "CAP_SYS_ADMIN",
< "CAP_SYS_BOOT",
< "CAP_SYS_NICE",
< "CAP_SYS_RESOURCE",
< "CAP_SYS_TIME",
< "CAP_SYS_TTY_CONFIG",
< "CAP_MKNOD",
< "CAP_LEASE",
< "CAP_AUDIT_WRITE",
< "CAP_AUDIT_CONTROL",
< "CAP_SETFCAP",
< "CAP_DAC_OVERRIDE",
< "CAP_MAC_OVERRIDE",
< "CAP_DAC_READ_SEARCH",
< "CAP_MAC_ADMIN",
< "CAP_SYSLOG",
< "CAP_WAKE_ALARM",
< "CAP_BLOCK_SUSPEND"
< ],
< "effective": [
< "CAP_CHOWN",
< "CAP_FOWNER",
< "CAP_FSETID",
< "CAP_KILL",
< "CAP_SETGID",
< "CAP_SETUID",
< "CAP_SETPCAP",
< "CAP_LINUX_IMMUTABLE",
< "CAP_NET_BIND_SERVICE",
< "CAP_NET_BROADCAST",
< "CAP_NET_ADMIN",
< "CAP_NET_RAW",
< "CAP_IPC_LOCK",
< "CAP_IPC_OWNER",
< "CAP_SYS_MODULE",
< "CAP_SYS_RAWIO",
< "CAP_SYS_CHROOT",
< "CAP_SYS_PTRACE",
< "CAP_SYS_PACCT",
< "CAP_SYS_ADMIN",
< "CAP_SYS_BOOT",
< "CAP_SYS_NICE",
< "CAP_SYS_RESOURCE",
< "CAP_SYS_TIME",
< "CAP_SYS_TTY_CONFIG",
< "CAP_MKNOD",
< "CAP_LEASE",
< "CAP_AUDIT_WRITE",
< "CAP_AUDIT_CONTROL",
< "CAP_SETFCAP",
< "CAP_DAC_OVERRIDE",
< "CAP_MAC_OVERRIDE",
< "CAP_DAC_READ_SEARCH",
< "CAP_MAC_ADMIN",
< "CAP_SYSLOG",
< "CAP_WAKE_ALARM",
< "CAP_BLOCK_SUSPEND"
< ],
< "ambient": [
< "CAP_CHOWN",
< "CAP_FOWNER",
< "CAP_FSETID",
< "CAP_KILL",
< "CAP_SETGID",
< "CAP_SETUID",
< "CAP_SETPCAP",
< "CAP_LINUX_IMMUTABLE",
< "CAP_NET_BIND_SERVICE",
< "CAP_NET_BROADCAST",
< "CAP_NET_ADMIN",
< "CAP_NET_RAW",
< "CAP_IPC_LOCK",
< "CAP_IPC_OWNER",
< "CAP_SYS_MODULE",
< "CAP_SYS_RAWIO",
< "CAP_SYS_CHROOT",
< "CAP_SYS_PTRACE",
< "CAP_SYS_PACCT",
< "CAP_SYS_ADMIN",
< "CAP_SYS_BOOT",
< "CAP_SYS_NICE",
< "CAP_SYS_RESOURCE",
< "CAP_SYS_TIME",
< "CAP_SYS_TTY_CONFIG",
< "CAP_MKNOD",
< "CAP_LEASE",
< "CAP_AUDIT_WRITE",
< "CAP_AUDIT_CONTROL",
< "CAP_SETFCAP",
< "CAP_DAC_OVERRIDE",
< "CAP_MAC_OVERRIDE",
< "CAP_DAC_READ_SEARCH",
< "CAP_MAC_ADMIN",
< "CAP_SYSLOG",
< "CAP_WAKE_ALARM",
< "CAP_BLOCK_SUSPEND"
< ]
< },
---
> "capabilities": [
> "CAP_CHOWN",
> "CAP_DAC_OVERRIDE",
> "CAP_DAC_READ_SEARCH",
> "CAP_FOWNER",
> "CAP_FSETID",
> "CAP_KILL",
> "CAP_SETGID",
> "CAP_SETUID",
> "CAP_SETPCAP",
> "CAP_LINUX_IMMUTABLE",
> "CAP_NET_BIND_SERVICE",
> "CAP_NET_BROADCAST",
> "CAP_NET_ADMIN",
> "CAP_NET_RAW",
> "CAP_IPC_LOCK",
> "CAP_IPC_OWNER",
> "CAP_SYS_MODULE",
> "CAP_SYS_RAWIO",
> "CAP_SYS_CHROOT",
> "CAP_SYS_PTRACE",
> "CAP_SYS_PACCT",
> "CAP_SYS_ADMIN",
> "CAP_SYS_BOOT",
> "CAP_SYS_NICE",
> "CAP_SYS_RESOURCE",
> "CAP_SYS_TIME",
> "CAP_SYS_TTY_CONFIG",
> "CAP_MKNOD",
> "CAP_LEASE",
> "CAP_AUDIT_WRITE",
> "CAP_AUDIT_CONTROL",
> "CAP_SETFCAP",
> "CAP_MAC_OVERRIDE",
> "CAP_MAC_ADMIN",
> "CAP_SYSLOG",
> "CAP_WAKE_ALARM",
> "CAP_BLOCK_SUSPEND"
> ],
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment