1. Implement freeing of the capability after one minute of write to /dev/caphash
2. Port 'su' or any other setuid program to use this capability device
3. In the "user1@user2@randomSring" user1 is optional which needs to be handled.