On 26/01/2013 17:13, Rich Freeman wrote: > I naively assumed that if you edit /etc/security/capability.conf this > would set the per-user capabilities. However, I have not actually > tried this. I guess our pam configuration/etc isn't set to check this > file?
pambase is not enabling pam_caps, so the file is ignored, at least for what I last knew. pambase needs to be restructured, but as I said before it's a task that for me is a PITA as I don't really use much about it, and it takes a lot of time and work to set up properly. I've been open for a while to be hired by somebody who has needs for a more precise PAM configuration in Gentoo, but no dice there. -- Diego Elio Pettenò — Flameeyes flamee...@flameeyes.eu — http://blog.flameeyes.eu/
