diff options
author | Scott Anderson <scott@anderso.nz> | 2020-04-28 20:44:05 +1200 |
---|---|---|
committer | Simon Ser <contact@emersion.fr> | 2020-04-29 10:39:09 +0200 |
commit | 906c0766df2fec4bd32c316fd1b0d46fded5fc84 (patch) | |
tree | 2d32acf48e0638acfa55cd573413489e4d074517 /meson_options.txt | |
parent | 98d949718c42a546466f79a4029b7d0d76650dc3 (diff) |
Remove libcap support
This is simply a false sense of security, and is worse than just using
setuid. CAP_SYS_ADMIN is an extremely serious capability that is
effectively as powerful as root.
It also required users to be in the input group, which allows any
process to keylog the entire system.
Diffstat (limited to 'meson_options.txt')
-rw-r--r-- | meson_options.txt | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/meson_options.txt b/meson_options.txt index ae6f5c0b..894113e7 100644 --- a/meson_options.txt +++ b/meson_options.txt @@ -1,4 +1,3 @@ -option('libcap', type: 'feature', value: 'auto', description: 'Enable support for rootless session via capabilities (cap_sys_admin)') option('logind', type: 'feature', value: 'auto', description: 'Enable support for rootless session via logind') option('logind-provider', type: 'combo', choices: ['auto', 'systemd', 'elogind'], value: 'auto', description: 'Provider of logind support library') option('xcb-errors', type: 'feature', value: 'auto', description: 'Use xcb-errors util library') |