| Thomas Gleixner | ec8f24b | 2019-05-19 13:07:45 +0100 | [diff] [blame] | 1 | # SPDX-License-Identifier: GPL-2.0-only |
| Micah Morton | aeca4e2 | 2019-01-16 07:46:06 -0800 | [diff] [blame] | 2 | config SECURITY_SAFESETID |
| 3 | bool "Gate setid transitions to limit CAP_SET{U/G}ID capabilities" |
| Micah Morton | 2f87324 | 2019-01-29 10:54:24 -0800 | [diff] [blame] | 4 | depends on SECURITY |
| 5 | select SECURITYFS |
| Micah Morton | aeca4e2 | 2019-01-16 07:46:06 -0800 | [diff] [blame] | 6 | default n |
| 7 | help |
| 8 | SafeSetID is an LSM module that gates the setid family of syscalls to |
| 9 | restrict UID/GID transitions from a given UID/GID to only those |
| 10 | approved by a system-wide whitelist. These restrictions also prohibit |
| 11 | the given UIDs/GIDs from obtaining auxiliary privileges associated |
| 12 | with CAP_SET{U/G}ID, such as allowing a user to set up user namespace |
| 13 | UID mappings. |
| 14 | |
| 15 | If you are unsure how to answer this question, answer N. |