mirror of
https://passt.top/passt
synced 2025-02-24 11:52:19 +00:00
56b8633a6b
Somehow most of this used to work on older kernels, but now we need to explicitly permit setuid, setgid, and setcap capabilities, as well as read-only access to passwd (as we support running under a given login name) and sssd library facilities. Signed-off-by: Stefano Brivio <sbrivio@redhat.com>