I have been in DevOps related jobs for past 6 years dealing mainly with Kubernetes in AWS and on-premise as well. I spent quite a lot …
Linux Capabilities
You cannot change system time even though you are not using APPARMOR or SECCOMP. There is something called ‘‘linux capabilities’’ to make granular group to execute ‘‘privileged action’’.
getcap /usr/bin/ping
ps -ef | grep sshd
getcap <process-id-of-sshd>