| /linux-6.15/Documentation/admin-guide/LSM/ |
| H A D | SafeSetID.rst | 7 from obtaining auxiliary privileges associated with CAP_SET{U/G}ID, such as 14 to switch to a different user must be spawned with CAP_SETUID privileges. 19 privileges opens up possible security holes since any user with access to the 20 file can exec() that program to gain the elevated privileges. 27 especially since programs often only call setuid() to drop privileges to a 28 lesser-privileged user -- not elevate privileges. Unfortunately, there is no 107 privileges, such as allowing a user to set up user namespace UID/GID mappings. 111 In v5.9 we are adding support for limiting CAP_SETGID privileges as was done
|
| /linux-6.15/Documentation/userspace-api/ |
| H A D | no_new_privs.rst | 5 The execve system call can grant a newly-started program privileges that 8 gaining these privileges as well, the kernel and user code must be 55 escalate its privileges by directly attacking setuid, setgid, and
|
| H A D | seccomp_filter.rst | 72 run with ``CAP_SYS_ADMIN`` privileges in its namespace. If these are not 74 programs cannot be applied to child processes with greater privileges
|
| H A D | landlock.rst | 194 The next step is to restrict the current thread from gaining more privileges 202 perror("Failed to restrict privileges"); 310 A sandboxed process has less privileges than a non-sandboxed process and must
|
| /linux-6.15/Documentation/ABI/testing/ |
| H A D | sysfs-bus-event_source-devices-hv_gpci | 94 * User needs root privileges to read data from this sysfs file. 126 * User needs root privileges to read data from this sysfs file. 158 * User needs root privileges to read data from this sysfs file. 190 * User needs root privileges to read data from this sysfs file. 222 * User needs root privileges to read data from this sysfs file.
|
| H A D | sysfs-bus-coreboot | 44 requires root privileges given this is exposing a small subset
|
| H A D | sysfs-devices-platform-kunpeng_hccs | 102 'inc_lane_of_type' which require root privileges. These
|
| /linux-6.15/security/safesetid/ |
| H A D | Kconfig | 11 the given UIDs/GIDs from obtaining auxiliary privileges associated
|
| /linux-6.15/Documentation/userspace-api/media/v4l/ |
| H A D | vidioc-dbg-g-register.rst | 49 superuser privileges. Additionally the Linux kernel must be compiled 159 Insufficient permissions. Root privileges are required to execute
|
| H A D | open.rst | 205 descriptor. Applications can request additional access privileges using
|
| /linux-6.15/Documentation/trace/ |
| H A D | mmiotrace.rst | 51 If not (requires root privileges):: 57 Activate mmiotrace (requires root privileges):: 76 Shut down mmiotrace (requires root privileges)::
|
| /linux-6.15/Documentation/infiniband/ |
| H A D | ucaps.rst | 11 read-write access. Root processes can grant users special privileges
|
| /linux-6.15/Documentation/filesystems/ |
| H A D | fuse.rst | 20 The filesystem daemon is running with the privileges of the mounting 214 A) mount owner should not be able to get elevated privileges with the 226 A) The mount owner could gain elevated privileges by either:
|
| /linux-6.15/Documentation/dev-tools/ |
| H A D | kselftest.rst | 59 Note that some tests will require root privileges. 140 Note that some tests will require root privileges. 165 note some tests will require root privileges::
|
| /linux-6.15/Documentation/gpu/ |
| H A D | msm-preemption.rst | 99 privileges.
|
| H A D | automated_testing.rst | 110 necessary privileges to run the CI on https://gitlab.freedesktop.org/drm/ci-ok
|
| /linux-6.15/security/keys/ |
| H A D | Kconfig | 52 it is or by a process with administrative privileges. The active
|
| /linux-6.15/Documentation/userspace-api/media/drivers/ |
| H A D | uvcvideo.rst | 142 Insufficient privileges (super user privileges are required).
|
| /linux-6.15/drivers/net/ethernet/emulex/benet/ |
| H A D | be_main.c | 1939 if (vf_cfg->privileges & BE_PRIV_FILTMGMT) { in be_set_vf_tvt() 1940 status = be_cmd_set_fn_privileges(adapter, vf_cfg->privileges & in be_set_vf_tvt() 1943 vf_cfg->privileges &= ~BE_PRIV_FILTMGMT; in be_set_vf_tvt() 1961 if (!(vf_cfg->privileges & BE_PRIV_FILTMGMT)) { in be_clear_vf_tvt() 1962 status = be_cmd_set_fn_privileges(adapter, vf_cfg->privileges | in be_clear_vf_tvt() 1965 vf_cfg->privileges |= BE_PRIV_FILTMGMT; in be_clear_vf_tvt() 4255 status = be_cmd_get_fn_privileges(adapter, &vf_cfg->privileges, in be_vf_setup() 4257 if (!status && !(vf_cfg->privileges & BE_PRIV_FILTMGMT)) { in be_vf_setup() 4259 vf_cfg->privileges | in be_vf_setup() 4263 vf_cfg->privileges |= BE_PRIV_FILTMGMT; in be_vf_setup()
|
| H A D | be.h | 351 u32 privileges; member
|
| /linux-6.15/Documentation/arch/powerpc/ |
| H A D | dexcr.rst | 171 can still clear its own NPHIE aspect without privileges).
|
| /linux-6.15/Documentation/admin-guide/ |
| H A D | perf-security.rst | 64 Linux divides the privileges traditionally associated with superuser 129 privileges [6]_ :
|
| /linux-6.15/tools/testing/selftests/tc-testing/ |
| H A D | README | 50 To use tdc, root privileges are required. This is because the
|
| /linux-6.15/Documentation/arch/s390/ |
| H A D | monreader.rst | 79 DCSS if your z/VM doesn't have one already, you need Class E privileges to
|
| /linux-6.15/Documentation/security/ |
| H A D | credentials.rst | 102 'group' and 'other'), each of which may be granted certain privileges 244 extra privileges, based on the annotations on the executable file.
|