You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hey, the CAP_NET_ADMIN capability has been documented to grant the following capabilities to the capability holder without needing elevated (root) privileges:
ability to modify host firewall
ability to modify routing tables
ability to modify network interface configuration
ability to modify socket permissions
Any of those capabilities would have a significant security impact if a process running on the host is able to take any of those actions without requiring elevated privileges. Possible to update the solution without using CAP_NET_ADMIN?
The text was updated successfully, but these errors were encountered:
Hey, the CAP_NET_ADMIN capability has been documented to grant the following capabilities to the capability holder without needing elevated (root) privileges:
ability to modify host firewall
ability to modify routing tables
ability to modify network interface configuration
ability to modify socket permissions
Any of those capabilities would have a significant security impact if a process running on the host is able to take any of those actions without requiring elevated privileges. Possible to update the solution without using CAP_NET_ADMIN?
The text was updated successfully, but these errors were encountered: