superrob1500
/
mirror-linux
mirror of https://github.com/torvalds/linux
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

docs: threat-model: don't limit root capabilities to CAP_SYS_ADMIN 

The threat-model document says that only users with CAP_SYS_ADMIN can carry
out a number of admin-level tasks, but there are numerous capabilities that
can confer that sort of power.  Generalize the text slightly to make it
clear that CAP_SYS_ADMIN is not the only all-powerful capability.

Acked-by: Willy Tarreau <w@1wt.eu>
Signed-off-by: Jonathan Corbet <corbet@lwn.net>
master
Jonathan Corbet 2026-05-13 14:58:53 -06:00
parent 561458db0d
commit f2e65e4e5b
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
Documentation/process/threat-model.rst
View File

@ -62,7 +62,8 @@ on common processors featuring privilege levels and memory management units:
* **Capability-based protection**: * **Capability-based protection**:
* users not having the ``CAP_SYS_ADMIN`` capability may not alter the * users not having elevated capabilities (including but not limited to
CAP_SYS_ADMIN) may not alter the
kernel's configuration, memory nor state, change other users' view of the kernel's configuration, memory nor state, change other users' view of the
file system layout, grant any user capabilities they do not have, nor file system layout, grant any user capabilities they do not have, nor
affect the system's availability (shutdown, reboot, panic, hang, or making affect the system's availability (shutdown, reboot, panic, hang, or making