[apparmor] [patch 4/6] add missing capabilities to severity.db
Kees Cook
kees at ubuntu.com
Thu Mar 22 18:57:18 UTC 2012
On Thu, Mar 22, 2012 at 10:06:11AM -0700, Steve Beattie wrote:
> CAP_SYSLOG 8
> CAP_WAKE_ALARM 8
>
> The latter two are undocumented in the capabilities(7) man page
> provided in Ubuntu 12.04; the syslog one is the separation out of
> accessing the dmesg buffer from CAP_SYSADMIN, and the CAP_WAKE_ALARM
> allows setting alarms that would wake a system from a suspended state,
> if my reading is correct.
That's odd -- at least CAP_SYSLOG was added to the upstream manpages 2 years ago or
something like that. I see it here, at least:
http://linux.die.net/man/7/capabilities
Looks like it's in 3.35 manpages, which isn't current in Ubuntu. I think
this needs to get fixed. :)
-Kees
--
Kees Cook
More information about the AppArmor
mailing list