Set Linux capabilities per file

asked 2016-04-27 11:19:35 -0600

I would like to affect a file's capabilities using Puppet. Linux has a built-in interface to permit particular capabilities such as allowing a program to bind to a privileged network port (<1024). This is useful for applications like Apache HTTPD, which often need to bind to ports 80 (HTTP) and 443 (HTTPS). The Linux kernel also provides a C API to access capabilities for files.

I searched if Puppet has integration with this part of the Linux kernel and found this old ticket. I was unable to find a corresponding ticket in the new JIRA repository. Are there plans for Puppet to eventually provide access to Linux capabilities? If not, would it be appropriate to create a ticket in JIRA to request this feature?

Thanks, -- Dylan Klomparens

edit retag flag offensive close merge delete