capabilities – Manage Linux capabilities¶
The capabilities system will automatically transform operators and flags into the effective set, so for example,
cap_foo=epwill probably become
This module does not attempt to determine the final operator and flags to compare, so you will want to ensure that your capabilities argument matches the final capabilities.
- name: Set cap_sys_chroot+ep on /foo capabilities: path: /foo capability: cap_sys_chroot+ep state: present - name: Remove cap_net_bind_service from /bar capabilities: path: /bar capability: cap_net_bind_service state: absent