changed inheritable capability set to the permitted one to execute firewall script...
authorMartin Willi <martin@strongswan.org>
Fri, 28 Sep 2007 07:04:09 +0000 (07:04 -0000)
committerMartin Willi <martin@strongswan.org>
Fri, 28 Sep 2007 07:04:09 +0000 (07:04 -0000)
src/charon/daemon.c

index 56b737a..c9c632d 100644 (file)
@@ -251,8 +251,7 @@ static void drop_capabilities(private_daemon_t *this, bool full)
 
        hdr.version = _LINUX_CAPABILITY_VERSION;
        hdr.pid = 0;
-       data.effective = data.permitted = keep;
-       data.inheritable = 0;
+       data.inheritable = data.effective = data.permitted = keep;
        
        if (capset(&hdr, &data))
        {