[PATCH 2/9] security: Make capabilities relative to the user namespace.

David Howells dhowells at redhat.com
Wed Feb 23 08:59:19 PST 2011


Serge E. Hallyn <serge at hallyn.com> wrote:

> +		/* If you have the capability in a parent user ns you have it
> +		 * in the over all children user namespaces as well, so see
> +		 * if this process has the capability in the parent user
> +		 * namespace.
> +		 */

"... in the over all children user namespaces ..." I think need a couple of
words dropping.

David


More information about the Containers mailing list