mirror of https://github.com/mkerrisk/man-pages
pid_namespaces.7: Correct capability requirements for write to /proc/sys/kernel/ns_last_pid
CAP_SYS_ADMIN is needed in the user NS that owns the PID NS. Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
c2f15a1349
commit
439526d153
|
@ -370,7 +370,7 @@ and when this file is subsequently read it will show that PID.
|
|||
.IP
|
||||
This file is writable by a process that has the
|
||||
.B CAP_SYS_ADMIN
|
||||
capability inside its user namespace.
|
||||
capability inside the user namespace that owns the PID namespace.
|
||||
.\" This ability is necessary to support checkpoint restore in user-space
|
||||
This makes it possible to determine the PID that is allocated
|
||||
to the next process that is created inside this PID namespace.
|
||||
|
|
Loading…
Reference in New Issue