MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
capabilities
Search

Conill: Rethinking sudo with object capabilities

Sunday December 14, 2025. 02:07 AM , from LWN.net
Ariadne Conill is
exploring a capability-based approach to privilege escalation on Linux
systems.

Inspired by the object-capability model, I've been working on a
project named capsudo. Instead of
treating privilege escalation as a temporary change of identity,
capsudo reframes it as a mediated interaction with a service called
capsudod that holds specific authority, which may range
from full root privileges to a narrowly scoped set of capabilities
depending on how it is deployed.
Read more at LWN.net
https://lwn.net/Articles/1050370/

Related News

capabilities Rethinking sudo with object capabilities OS NewsDec 13
conill HPE pumps AI cloud lineup with extra Nvidia capabilities TheRegisterDec 1
privilege Jeff Bezos’ Project Prometheus move seen as a rethinking of AI IT strategy ComputerWorldNov 18
capsudo Ubuntu 25.10's Rusty sudo holes quickly welded shut TheRegisterNov 13
escalation Microsoft adds new screen recording capabilities to Sysinternals ZoomIt BetaNewsNov 12
object AWS launches ‘Capabilities by Region’ to simplify planning for cloud deployments InfoWorldNov 7
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Dec, Sun 14 - 07:05 CET