wok annotate libcap-ng/description.txt @ rev 25382
updated unison (2.51.5 -> 2.52.1)
| author | Hans-G?nter Theisgen |
|---|---|
| date | Sat Jul 30 17:15:58 2022 +0100 (2022-07-30) |
| parents | |
| children |
| rev | line source |
|---|---|
| Hans-G?nter@24724 | 1 The libcap-ng library is intended to make programming with posix |
| Hans-G?nter@24724 | 2 capabilities much easier than the traditional libcap library. |
| Hans-G?nter@24724 | 3 It includes utilities that can analyse all currently running |
| Hans-G?nter@24724 | 4 applications and print out any capabilities and whether or not it |
| Hans-G?nter@24724 | 5 has an open ended bounding set. An open bounding set without the |
| Hans-G?nter@24724 | 6 securebits "NOROOT" flag will allow full capabilities escalation |
| Hans-G?nter@24724 | 7 for applications retaining uid 0 simply by calling execve. |
| Hans-G?nter@24724 | 8 |
| Hans-G?nter@24724 | 9 The included utilities are designed to let administrators and |
| Hans-G?nter@24724 | 10 developers spot applications from various ways that may be running |
| Hans-G?nter@24724 | 11 with too much privilege. For example, any investigation should |
| Hans-G?nter@24724 | 12 start with network facing applications since they would be prime |
| Hans-G?nter@24724 | 13 targets for intrusion. |
| Hans-G?nter@24724 | 14 The netcap program will check all running applications and display |
| Hans-G?nter@24724 | 15 the results. |