5 1) in /usr/src/linux/include/linux/capability.h find these lines
7 #define CAP_INIT_EFF_SET to_cap_t(~0 & ~CAP_TO_MASK(CAP_SETPCAP))
8 #define CAP_INIT_INH_SET to_cap_t(0)
12 #define CAP_INIT_EFF_SET to_cap_t(~0)
13 #define CAP_INIT_INH_SET to_cap_t(~0)
15 then recompile your kernel and boot it. (Note that the above lines
16 are from linux 2.4.19; it may be different if you're using a
19 NB: This may expose your system to local denial of service attacks.
20 If it is a shared system or server, you should assess the impact of
21 enabling capabilities in the context of your overall system security
24 2) install libcap from
25 ftp://ftp.kernel.org/pub/linux/libs/security/linux-privs/kernel-2.4/
27 3) if you're using a journalling filesystem, mount some directory with
28 -t tmpfs and tell configure about it with --with-default-tmpdir
30 4) configure with --enable-optimize --enable-capabilities and
31 --with-default-tmpdir=/where/ever