fixed updown script privilige inheritance for pluto, too

author Martin Willi <martin@strongswan.org>

Fri, 28 Sep 2007 09:42:55 +0000 (09:42 -0000)

committer Martin Willi <martin@strongswan.org>

Fri, 28 Sep 2007 09:42:55 +0000 (09:42 -0000)
author Martin Willi <martin@strongswan.org>
Fri, 28 Sep 2007 09:42:55 +0000 (09:42 -0000)
committer Martin Willi <martin@strongswan.org>
Fri, 28 Sep 2007 09:42:55 +0000 (09:42 -0000)
diff --git a/src/pluto/plutomain.c b/src/pluto/plutomain.c

index a5bf827..3c690f5 100644 (file)
--- a/src/pluto/plutomain.c
+++ b/src/pluto/plutomain.c
@@ -619,8 +619,8 @@ main(int argc, char **argv)
      /* drop unneeded capabilities and change UID/GID */
      hdr.version = _LINUX_CAPABILITY_VERSION;
      hdr.pid = 0;
-    data.effective = data.permitted = 1<<CAP_NET_ADMIN | 1<<CAP_NET_BIND_SERVICE;
-    data.inheritable = 0;
+    data.inheritable = data.effective = data.permitted = 
+                               1<<CAP_NET_ADMIN | 1<<CAP_NET_BIND_SERVICE;
  
      prctl(PR_SET_KEEPCAPS, 1);
author	Martin Willi <martin@strongswan.org>
	Fri, 28 Sep 2007 09:42:55 +0000 (09:42 -0000)
committer	Martin Willi <martin@strongswan.org>
	Fri, 28 Sep 2007 09:42:55 +0000 (09:42 -0000)