core.5: Executing a file that has capabilities also prevents core dumps

Reported-by: Bill McConnaughey <mcconnau@biochem.wustl.edu> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
2015-01-19 12:19:45 +01:00 · 2015-01-19 12:19:45 +01:00 · 60a119dd2a
parent e04ae86d7b
commit 60a119dd2a
1 changed files with 3 additions and 1 deletions
--- a/man5/core.5
+++ b/man5/core.5
@ -93,7 +93,9 @@ permission enabled.
 .IP *
 The process is executing a set-user-ID (set-group-ID) program
 that is owned by a user (group) other than the real user (group)
-ID of the process.
+ID of the process,
+or the process is executing a program that has file capabilities (see
+.BR capabilities (7)).
 (However, see the description of the
 .BR prctl (2)
 .B PR_SET_DUMPABLE