mirror of https://github.com/mkerrisk/man-pages
user_namespaces.7: Minor rewordings of recently added text
Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
89a0bd8283
commit
b8cf6c2435
|
@ -869,12 +869,13 @@ that field is displayed as 4294967295 (\-1 as an unsigned integer).
|
|||
.\"
|
||||
.SS Accessing files
|
||||
.PP
|
||||
In order to determine permissions when an unprivileged process accesses a file
|
||||
(or other resource such as a System V IPC object),
|
||||
In order to determine permissions when an unprivileged process accesses a file,
|
||||
the process credentials (UID, GID) and the file credentials
|
||||
are in effect mapped back to what they would be in
|
||||
the initial user namespace and then compared to determine
|
||||
the permissions that the process has on the file.
|
||||
The same is also of other objects that employ the credentials plus
|
||||
permissions mask accessibility model, such as System V IPC objects
|
||||
.\"
|
||||
.\" ============================================================
|
||||
.\"
|
||||
|
|
Loading…
Reference in New Issue