OpenVZ Forum: Users » VPS capabilities

Home » Mailing lists » Users » VPS capabilities

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: VPS capabilities [message #21515 is a reply to message #21508]

Wed, 10 October 2007 09:41

dev
Messages: 1693
Registered: September 2005
Location: Moscow

Senior Member

Dietmar Maurer wrote:
> Where can I find more information about vps capabilities, i.e. what
> exactly is:
> 
> NET_BIND_SERVICE
> KILL
> LINUX_IMMUTABLE
> NET_ADMIN
> SYS_CHROOT

these are std linux capabilities, so you can look at any documentation related to it,
plus comments in kernel in include/linux/capability.h and kernel sources.

> VE_ADMIN

it is a restricted subset of CAP_SYS_ADMIN+CAP_NET_ADMIN capability for VE root.
it allows to do a lot of thing allowed for std root, like configuring firewalls,
network devices, etc. but not everything, e.g. VE root can't change mtrr registers,
can't issue raw SCSI commands, etc.

Thanks,
Kirill

Report message to a moderator

[Message index]

		VPS capabilities By: Dietmar Maurer on Wed, 10 October 2007 09:15
		Re: VPS capabilities By: dev on Wed, 10 October 2007 09:41
		AW: VPS capabilities By: Dietmar Maurer on Wed, 10 October 2007 09:48
		Re: AW: VPS capabilities By: dev on Wed, 10 October 2007 10:03
		AW: AW: VPS capabilities By: Dietmar Maurer on Wed, 10 October 2007 10:05
		Re: AW: AW: VPS capabilities By: dev on Wed, 10 October 2007 10:18

Previous Topic:	linux-2.6.22-ovz004
Next Topic:	2.6.22.ovz00x spec file

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Wed Aug 28 00:48:16 GMT 2024

Total time taken to generate the page: 0.03393 seconds