f7494d7335
* Run as sssd user * Set capabilities * Fix rundir, pid file wasn't created * Rename patches Signed-off-by: Samuel Cabrero <scabrero@suse.de>
12 lines
418 B
Plaintext
12 lines
418 B
Plaintext
/usr/libexec/sssd/sssd_pam root:sssd 0750
|
|
+capabilities cap_dac_read_search=p
|
|
|
|
/usr/libexec/sssd/selinux_child root:sssd 0750
|
|
+capabilities cap_chown,cap_dac_override,cap_setuid,cap_setgid=ep
|
|
|
|
/usr/libexec/sssd/krb5_child root:sssd 0750
|
|
+capabilities cap_chown,cap_dac_override,cap_setuid,cap_setgid=ep
|
|
|
|
/usr/libexec/sssd/ldap_child root:sssd 0750
|
|
+capabilities cap_chown,cap_dac_override,cap_setuid,cap_setgid=ep
|