mirror of https://github.com/mkerrisk/man-pages
user_namespaces.7: Note that user namespaces isolate the root directory
Reported-by: Eric W. Biederman <ebiederm@xmission.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
c0d02ab07a
commit
99f04bb1e9
|
@ -29,9 +29,11 @@ user_namespaces \- overview of Linux user_namespaces
|
|||
For an overview of namespaces, see
|
||||
.BR namespaces (7).
|
||||
|
||||
User namespaces isolate security-related identifiers, in particular,
|
||||
User namespaces isolate security-related identifiers and attributes,
|
||||
in particular,
|
||||
user IDs and group IDs (see
|
||||
.BR credentials (7),
|
||||
the root directory,
|
||||
keys (see
|
||||
.BR keyctl (2)),
|
||||
.\" FIXME: This page says very little about the interaction
|
||||
|
@ -126,6 +128,7 @@ user namespace,
|
|||
even if the new namespace is created or joined by the root user
|
||||
(i.e., a process with user ID 0 in the root namespace).
|
||||
|
||||
|
||||
Note that a call to
|
||||
.BR execve (2)
|
||||
will cause a process to lose any capabilities that it has,
|
||||
|
|
Loading…
Reference in New Issue