2Eyl
Do `sudo` and `su` belong to capability-based security?
In Linux, do sudo
and su
belong to Capability-based security ?
For example, when editing a system file, we usually need sudo
or su
to temporarily switch to user root. Does this example belong to capability-based security, or to protection rings? Does this example need some system call to the kernel, or just the privillege of user root, or both?
What are other approaches in Linux that belong to Capability-based security?
Are sudo
and su
the only approach that belong to Capability-based security?