From 0812fe50006b3bf14bb69eef517b225161099373 Mon Sep 17 00:00:00 2001
From: nemunaire <nemunaire@nemunai.re>
Date: Sat, 19 Jan 2019 23:40:42 +0100
Subject: [PATCH] fickit-pkg: find the minimal set of capabilities to run

---
 fickit-pkg/rsync/build.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/fickit-pkg/rsync/build.yml b/fickit-pkg/rsync/build.yml
index 60dff986..637a559f 100644
--- a/fickit-pkg/rsync/build.yml
+++ b/fickit-pkg/rsync/build.yml
@@ -6,6 +6,12 @@ config:
     - /etc/resolv.conf:/etc/resolv.conf
   capabilities:
     - CAP_NET_BIND_SERVICE
+    - CAP_SYS_CHROOT
+    - CAP_SETGID
+    - CAP_SETUID
+    - CAP_KILL
+    - CAP_CHOWN
+    - CAP_FOWNER
   pid: new
   ipc: new
   uts: new