# Owner Pureum Jung(pr.jung@samsung.com)
# Date Sep 2, 2016
# Required cap_dac_override
-# cap_dac_override to access input event node
+# cap_dac_override to access input event node => removed as feedbackd has input gid.
-if [ -e "/usr/bin/feedbackd" ]
-then /usr/sbin/setcap cap_dac_override=eip /usr/bin/feedbackd
-fi
+#if [ -e "/usr/bin/feedbackd" ]
+#then /usr/sbin/setcap cap_dac_override=eip /usr/bin/feedbackd
+#fi
# Package connmand
# Owner Hyunuk Tak(hyunuk.tak@samsung.com)
# Capability Bit only effective and inheriable
# cap_net_admin to use ioctl socket
# cap_net_raw to use RAW socket
-# cap_sys_admin to initialize iptables table
+# cap_sys_admin to initialize iptables table => removed as it is not needed.
if [ -e "/usr/sbin/xtables-multi" ]
-then /usr/sbin/setcap cap_net_admin,cap_net_raw,cap_sys_admin=ei /usr/sbin/xtables-multi
+then /usr/sbin/setcap cap_net_admin,cap_net_raw=ei /usr/sbin/xtables-multi
fi
# Package tayga
# Date Oct 13, 2016
# Required cap_dac_override
# Capability Bit only effective and inheriable
-# cap_dac_override to access file
+# cap_dac_override to access file => removed as calling process has audio gid.
-if [ -e "/usr/bin/amixer" ]
-then /usr/sbin/setcap cap_dac_override=ei /usr/bin/amixer
-fi
+#if [ -e "/usr/bin/amixer" ]
+#then /usr/sbin/setcap cap_dac_override=ei /usr/bin/amixer
+#fi
# Package data-provider-master
# Owner Myung-ki Lee (mk5004.lee@samsung.com)
# Owner Jaekuk Lee(juku1999@samsung.com)
# Date July 4, 2017
# Required cap_sys_admin, cap_setgid
-# cap_sys_admin to mount ( TODO : need to be checked)
+# cap_sys_admin to mount ( TODO : need to be checked) => removed as it is not needed.
# cap_setgid to change process gid
if [ -e "/usr/bin/wrt-loader" ]
-then /usr/sbin/setcap cap_sys_admin,cap_setgid=ei /usr/bin/wrt-loader
+then /usr/sbin/setcap cap_setgid=ei /usr/bin/wrt-loader
fi
# TODO: MOVE TO OTHER SCRIPT OR REMOVE
projects / platform / core / security / security-config.git / commitdiff