From f71d1557506af6a772c0659638081af77a76f081 Mon Sep 17 00:00:00 2001
From: Michael Kerrisk <mtk.manpages@gmail.com>
Date: Mon, 12 Sep 2016 19:19:14 +0100
Subject: [PATCH] packet.7: Clarify user namespace requirements for CAP_NET_RAW

Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
---
 man7/packet.7 | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/man7/packet.7 b/man7/packet.7
index 14de5de5f..d5e41dd9b 100644
--- a/man7/packet.7
+++ b/man7/packet.7
@@ -50,9 +50,9 @@ then all protocols are received.
 All incoming packets of that protocol type will be passed to the packet
 socket before they are passed to the protocols implemented in the kernel.
 
-Only processes with the
+In order to create a packet socket, a process must have the
 .B CAP_NET_RAW
-capability may open packet sockets.
+capability in the user namespace that governs its network namespace.
 
 .B SOCK_RAW
 packets are passed to and from the device driver without any changes in