changed inheritable capability set to the permitted one to execute firewall script...
[strongswan.git] / src / charon / daemon.c
index 56b737a..c9c632d 100644 (file)
@@ -251,8 +251,7 @@ static void drop_capabilities(private_daemon_t *this, bool full)
 
        hdr.version = _LINUX_CAPABILITY_VERSION;
        hdr.pid = 0;
-       data.effective = data.permitted = keep;
-       data.inheritable = 0;
+       data.inheritable = data.effective = data.permitted = keep;
        
        if (capset(&hdr, &data))
        {