The kernel interface, while some aspects of it is much simpler is also
not really meant to be called directly by applications.
The attached patch approximates the same functionality using libcap.
Differs slightly in how it sets the permitted capabilities to be kept on
uid change (explicit instead of masked), but end result is the same as
setting the capabilities won't work if these were not allowed.
This archive was generated by hypermail 2.2.0 : Wed Oct 28 2009 - 12:00:05 MDT