On Friday 2011-12-16 12:04, Mickey Nordstrom wrote: >I have understood that I should be able to do this with the >CAP_NET_ADMIN capability but so far during my testing with ipset 4.5 >I have not been successful. Just how is CAP_NET_ADMIN any better than sudo? (The application would have full network control in either case.) -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
