-#os.system('mount none -t proc /proc')
-os.execv('/usr/sbin/capsh',['--drop',drop_capabilities,'--'])
+open('/proc/pidsu','w').write(pid)
+
+pid = os.fork()
+
+cap_args = map(lambda c:'--drop='+c, drop_capabilities)
+
+if (pid == 0):
+ os.execv('/usr/sbin/capsh',cap_args+['--']+args[1:])
+else:
+ os.waitpid(pid,0)