From fdf41f57c7079b832de85fe24c14b10084353c89 Mon Sep 17 00:00:00 2001
From: Michael Kerrisk <mtk.manpages@gmail.com>
Date: Wed, 9 Nov 2016 14:51:17 +0100
Subject: [PATCH] capabilities.7: CAP_SYS_ADMIN allows privileged ioctl()
 operations on /dev/random

Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
---
 man7/capabilities.7 | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/man7/capabilities.7 b/man7/capabilities.7
index f1320e5a3..db8ffec12 100644
--- a/man7/capabilities.7
+++ b/man7/capabilities.7
@@ -442,6 +442,13 @@ perform various privileged filesystem
 .BR ioctl (2)
 operations;
 .IP *
+perform privileged
+.BR ioctl (2)
+operations on the
+.IR /dev/random
+device (see
+.BR random (4));
+.IP *
 perform administrative operations on many device drivers.
 .RE
 .PD