diff options
author | Kelvin M. Klann <kmk3.code@protonmail.com> | 2022-03-27 18:01:16 -0300 |
---|---|---|
committer | Kelvin M. Klann <kmk3.code@protonmail.com> | 2022-03-27 18:01:16 -0300 |
commit | 2183e4d296e598c6407d4a1f64368039a7ae1efa (patch) | |
tree | 0fec7c82307aa99f7d5dc6131c36499217a458fa /src/man/firejail.txt | |
parent | megaglest.profile: Add allow-lua.inc (#5066) (diff) | |
download | firejail-2183e4d296e598c6407d4a1f64368039a7ae1efa.tar.gz firejail-2183e4d296e598c6407d4a1f64368039a7ae1efa.tar.zst firejail-2183e4d296e598c6407d4a1f64368039a7ae1efa.zip |
docs: mention capabilities(7) on --caps
As hinted by @rusty-snake[1].
[1] https://github.com/netblue30/firejail/discussions/5064#discussioncomment-2417395
Diffstat (limited to 'src/man/firejail.txt')
-rw-r--r-- | src/man/firejail.txt | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/man/firejail.txt b/src/man/firejail.txt index 41171a4e7..7cb1c7e89 100644 --- a/src/man/firejail.txt +++ b/src/man/firejail.txt | |||
@@ -216,6 +216,7 @@ not change the execution of firejail. | |||
216 | Linux capabilities is a kernel feature designed to split up the root privilege into a set of distinct privileges. | 216 | Linux capabilities is a kernel feature designed to split up the root privilege into a set of distinct privileges. |
217 | These privileges can be enabled or disabled independently, thus restricting what a process running | 217 | These privileges can be enabled or disabled independently, thus restricting what a process running |
218 | as root can do in the system. | 218 | as root can do in the system. |
219 | See capabilities(7) for details. | ||
219 | 220 | ||
220 | By default root programs run with all capabilities enabled. \-\-caps option disables the following capabilities: | 221 | By default root programs run with all capabilities enabled. \-\-caps option disables the following capabilities: |
221 | CAP_SYS_MODULE, CAP_SYS_RAWIO, | 222 | CAP_SYS_MODULE, CAP_SYS_RAWIO, |