I would like to affect a file's capabilities using Puppet. Linux has a built-in interface to [permit particular capabilities](http://man7.org/linux/man-pages/man7/capabilities.7.html) such as allowing a program to bind to a privileged network port (<1024). This is useful for applications like Apache HTTPD, which often need to bind to ports 80 (HTTP) and 443 (HTTPS). The Linux kernel also provides a [C API to access capabilities for files](http://man7.org/linux/man-pages/man3/cap_get_file.3.html).
I searched if Puppet has integration with this part of the Linux kernel and found [this old ticket](https://projects.puppetlabs.com/issues/3176). I was unable to find a corresponding ticket in the new JIRA repository. Are there plans for Puppet to eventually provide access to Linux capabilities? If not, would it be appropriate to create a ticket in JIRA to request this feature?
Thanks,
-- Dylan Klomparens
↧