From owner-p4-projects@FreeBSD.ORG  Mon Aug 25 09:03:50 2008
Return-Path: <owner-p4-projects@FreeBSD.ORG>
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id 05F381065681; Mon, 25 Aug 2008 09:03:50 +0000 (UTC)
Delivered-To: perforce@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id BCF3D1065671
	for <perforce@freebsd.org>; Mon, 25 Aug 2008 09:03:49 +0000 (UTC)
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id B783E8FC17
	for <perforce@freebsd.org>; Mon, 25 Aug 2008 09:03:49 +0000 (UTC)
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.2/8.14.2) with ESMTP id m7P93nU1080460
	for <perforce@freebsd.org>; Mon, 25 Aug 2008 09:03:49 GMT
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Received: (from perforce@localhost)
	by repoman.freebsd.org (8.14.2/8.14.1/Submit) id m7P93nLI080458
	for perforce@freebsd.org; Mon, 25 Aug 2008 09:03:49 GMT
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Date: Mon, 25 Aug 2008 09:03:49 GMT
Message-Id: <200808250903.m7P93nLI080458@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: perforce set sender to
	bb+lists.freebsd.perforce@cyrus.watson.org using -f
From: Robert Watson <rwatson@FreeBSD.org>
To: Perforce Change Reviews <perforce@freebsd.org>
Cc: 
Subject: PERFORCE change 148363 for review
X-BeenThere: p4-projects@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: p4 projects tree changes <p4-projects.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/p4-projects>
List-Post: <mailto:p4-projects@freebsd.org>
List-Help: <mailto:p4-projects-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/p4-projects>,
	<mailto:p4-projects-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Aug 2008 09:03:50 -0000

http://perforce.freebsd.org/chv.cgi?CH=148363

Change 148363 by rwatson@rwatson_freebsd_capabilities on 2008/08/25 09:03:33

	Remove a todo item to add a privilege to escape from capability
	mode: that's not desired.

Affected files ...

.. //depot/projects/trustedbsd/capabilities/TODO#8 edit

Differences ...

==== //depot/projects/trustedbsd/capabilities/TODO#8 (text+ko) ====

@@ -38,8 +38,6 @@
   diverse set of rights.  Should we do something more fine-grained and
   request a specific capability based on arguments and other context?
 
-- Should there be a priv(9) privilege to expand capability rights?  (no)
-
 - Refine access control on sysctl infrastructure sysctls, such as name
   lookup, etc.