man lcap (Administration système) - remove Linux kernel capabilities

NAME

lcap - remove Linux kernel capabilities

SYNOPSIS

lcap [-h]

lcap [-v[v]] -c capability

lcap [-v[v]] [-z] capability ...

DESCRIPTION

This manual page documents lcap. lcap removes "capabilities" from the Linux kernel (2.2.11 and greater).

OPTIONS

Without any command line options, lcap will display all the capability bits and their current setting. A * before the capability means the bit is set (to one). The lack of a * means the bit is unset (set to zero).

-h
Display the help message.
-v
Show lots of information.
-vv
Show even more information.
-c
Check if capability is set. If the capability's bit is set, the return code is greater than zero. If the capability's is not set, the return code is zero.
-z
Set all capability bits to zero except for the capabilities listed on the command line.

Without the -z option, the capability bit is set to zero. All other bits are left as is. Multiple capabilities may be listed on the command line (except when using the -c option, in which case only one capability may be specified).

REPORTING BUGS

Report bugs to <spoon@ix.netcom.com>.

AUTHOR

spoon <spoon@ix.netcom.com>

COPYRIGHT

Copyright (C) 1999-2000 spoon@ix.netcom.com

SEE ALSO

capabilities(7)