From Fedora Project Wiki

  • Lets pretend:
    • CAP_FULL_SET = -1
    • CAP_EMPTY_SET = 0
  • Possible uids:
    • 0
    • 500
  • Possible fmode
    • 0
    • SUID
  • Possible securebits
    • KEEP_CAPS
    • NO_SETUID_FIXUP
    • NOROOT
Number Uid pE pP pI pB securebits fmode fE fP fI pE' pP' pI' pB' AT_SECURE
1 0 -1 -1 0 -1 0 0 0 0 0 -1 -1 0 -1 1
2 0 0 0 0 -1 0 0 0 0 0 -1 -1 0 -1 1
3 0 -1 -1 0 -1 NOROOT 0 0 0 0 -1 -1 0 -1 1
4 0 0 0 0 -1 NOROOT 0 0 0 0 0 0 0 -1 0
5 0 -1 -1 0 -1 0 SUID 0 0 0 -1 -1 0 -1 1
6 0 0 0 0 -1 0 SUID 0 0 0 -1 -1 0 -1 1
7 0 -1 -1 0 -1 NOROOT SUID 0 0 0 -1 -1 0 -1 1
8 0 0 0 0 -1 NOROOT SUID 0 0 0 0 0 0 -1 0
9 500 -1 -1 0 -1 0 0 0 0 0 0 0 0 -1 0
10 500 0 0 0 -1 0 0 0 0 0 0 0 0 -1 0
11 500 -1 -1 0 -1 NOROOT 0 0 0 0 0 0 0 -1 0
12 500 0 0 0 -1 NOROOT 0 0 0 0 0 0 0 -1 0
13 500 -1 -1 0 -1 0 SUID 0 0 0 -1 -1 0 -1 1
14 500 0 0 0 -1 0 SUID 0 0 0 -1 -1 0 -1 1
15 500 -1 -1 0 -1 NOROOT SUID 0 0 0 0 0 0 -1 0
16 500 0 0 0 -1 NOROOT SUID 0 0 0 0 0 0 -1 0
Number Uid pE pP pI pB securebits fmode fE fP fI pE' pP' pI' pB' AT_SECURE
17 0 -1 -1 0 -1 0 0 1 -1 -1 -1 -1 0 -1 1
18 0 0 0 0 -1 0 0 1 -1 -1 -1 -1 0 -1 1
19 0 -1 -1 0 -1 NOROOT 0 1 -1 -1 -1 -1 0 -1 1
20 0 0 0 0 -1 NOROOT 0 1 -1 -1 -1 -1 0 -1 1
21 0 -1 -1 0 -1 0 SUID 1 -1 -1 -1 -1 0 -1 1 ***
22 0 0 0 0 -1 0 SUID 1 -1 -1 -1 -1 0 -1 1 ***
23 0 -1 -1 0 -1 NOROOT SUID 1 -1 -1 -1 -1 0 -1 1 ***
24 0 0 0 0 -1 NOROOT SUID 1 -1 -1 -1 -1 0 -1 1 ***
25 500 -1 -1 0 -1 0 0 1 -1 -1 -1 -1 0 -1 1
26 500 0 0 0 -1 0 0 1 -1 -1 -1 -1 0 -1 1
27 500 -1 -1 0 -1 NOROOT 0 1 -1 -1 -1 -1 0 -1 1
28 500 0 0 0 -1 NOROOT 0 1 -1 -1 -1 -1 0 -1 1
29 500 -1 -1 0 -1 0 SUID 1 -1 -1 -1 -1 0 -1 1 ***
30 500 0 0 0 -1 0 SUID 1 -1 -1 -1 -1 0 -1 1 ***
31 500 -1 -1 0 -1 NOROOT SUID 1 -1 -1 -1 -1 0 -1 1 ***
32 500 0 0 0 -1 NOROOT SUID 1 -1 -1 -1 -1 0 -1 1 ***
Number Uid pE pP pI pB securebits fmode fE fP fI pE' pP' pI' pB' AT_SECURE
33 0 -1 -1 0 -1 0 0 0 -1 -1 0 -1 0 -1 1
34 0 0 0 0 -1 0 0 0 -1 -1 0 -1 0 -1 1
35 0 -1 -1 0 -1 NOROOT 0 0 -1 -1 0 -1 0 -1 1
36 0 0 0 0 -1 NOROOT 0 0 -1 -1 0 -1 0 -1 1
37 0 -1 -1 0 -1 0 SUID 0 -1 -1 -1 -1 0 -1 1 ***
38 0 0 0 0 -1 0 SUID 0 -1 -1 -1 -1 0 -1 1 ***
39 0 -1 -1 0 -1 NOROOT SUID 0 -1 -1 -1 -1 0 -1 1 ***
40 0 0 0 0 -1 NOROOT SUID 0 -1 -1 -1 -1 0 -1 1 ***
41 500 -1 -1 0 -1 0 0 0 -1 -1 0 -1 0 -1 1
42 500 0 0 0 -1 0 0 0 -1 -1 0 -1 0 -1 1
43 500 -1 -1 0 -1 NOROOT 0 0 -1 -1 0 -1 0 -1 1
44 500 0 0 0 -1 NOROOT 0 0 -1 -1 0 -1 0 -1 1
45 500 -1 -1 0 -1 0 SUID 0 -1 -1 0 -1 0 -1 1 ***
46 500 0 0 0 -1 0 SUID 0 -1 -1 0 -1 0 -1 1 ***
47 500 -1 -1 0 -1 NOROOT SUID 0 -1 -1 0 -1 0 -1 1 ***
48 500 0 0 0 -1 NOROOT SUID 0 -1 -1 0 -1 0 -1 1 *** 
*** Means invalid config.  SUID + fcaps
Retrieved from "https://fedoraproject.org/w/index.php?title=Capabilities&oldid=227116"