1 2 3 4 5 6
[Unit] Description=Test for CapabilityBoundingSet [Service] ExecStart=/bin/sh -c 'c=$(capsh --print | grep "Bounding set " | cut -f 2 -d "="); echo $c; exit $(test $c = "cap_fowner,cap_kill")' CapabilityBoundingSet=CAP_FOWNER CAP_KILL