Ubuntu
unbound package

  1. Bug #1749931
  2. Comment #8

Comment 8 for bug 1749931

Revision history for this message
Jamie Strandboge (jdstrand) wrote :

"Ok so overall:

  deny capability chown -> capability chown
  (can we limit that to a certain scope)"

Unfortunately, no, not unless we get help from unbound to change_profile/change_onexec after a fork/exec or it is happening in a helper binary that we could separately profile.