[Comment removed by author]
Solaris pioneered that I think. It’s in principle a good idea: most setuid root binaries need only a really small subset of full root privileges, often only one specific thing that a normal user can’t do.
[Comment removed by author]
Solaris pioneered that I think. It’s in principle a good idea: most setuid root binaries need only a really small subset of full root privileges, often only one specific thing that a normal user can’t do.