The user space tools are not POSIX compatible.
This implementation adds filesystem capabilities to the Linux
kernel. It doesn't change how capabilities were used and
interpreted in the kernel proper.
With this patch, you will be able to grant selective privileges to
executables on a needed basis. This means for some executables, there
is no need anymore to run as root or as a suid root binary.
For example, you may drop the SUID bit from ping and grant the