Next: User Capability Groups
Up: LinSec Capability Model
Previous: Executable File Capabilities
Contents
User Capabilities
Unlike the Process Capabilities, User Capabilities are an idea
completely novel to Linux. With each user in the system there are two
capability sets associated:
- User Permitted set (uP): capability set used to reflect user
privileges in the system (via processes run under the user's uid).
- User Bounding set (uB): maximum capability set that a process
running under the user's uid can obtain during its lifetime.