From d0c3b2bee90a2089a126ec2d530a11cbcf4d87cd Mon Sep 17 00:00:00 2001
From: smitsohu <smitsohu@gmail.com>
Date: Tue, 18 Jan 2022 03:08:04 +0100
Subject: relnotes

---
 README.md | 21 ++++++++++++++++++++-
 1 file changed, 20 insertions(+), 1 deletion(-)

(limited to 'README.md')

diff --git a/README.md b/README.md
index 8371ba67d..f6efc50c5 100644
--- a/README.md
+++ b/README.md
@@ -283,6 +283,25 @@ INTRUSION DETECTION SYSTEM (IDS)
 
 `````
 
+### File descriptors
+`````
+       --keep-fd=all
+              Inherit all open file descriptors to  the  sandbox.  By  default
+              only  file  descriptors 0, 1 and 2 are inherited to the sandbox,
+              and all other file descriptors are closed.
+
+              Example:
+              $ firejail --keep-fd=all
+
+       --keep-fd=file_descriptor
+              Don't close specified open file  descriptors.  By  default  only
+              file  descriptors  0,  1 and 2 are inherited to the sandbox, and
+              all other file descriptors are closed.
+
+              Example:
+              $ firejail --keep-fd=3,4,5
+`````
+
 ### Deteministic Shutdown
 `````
       --deterministic-exit-code
@@ -298,7 +317,7 @@ INTRUSION DETECTION SYSTEM (IDS)
 
 ### Network Monitor
 `````
-        --nettrace=name|pid
+       --nettrace=name|pid
               Monitor TCP and UDP traffic coming into the sandbox specified by
               name or pid. Only networked sandboxes  created  with  --net  are
               supported.
-- 
cgit v1.2.3-70-g09d2