shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-09-19 01:44:42 +03:00
Code Activity

man: systemd.exec: Clarify InaccessibleDirectories (#3048) (#3048)

Browse Source
This commit is contained in:
Nicolas Braud-Santoni
2016-04-17 14:22:17 +02:00
committed by Lennart Poettering
parent cacf980ed4
commit b50a16af8e
1 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
man/systemd.exec.xml
View File

@@ -859,9 +859,12 @@
reading only, writing will be refused even if the usual file reading only, writing will be refused even if the usual file
access controls would permit this. Directories listed in access controls would permit this. Directories listed in
<varname>InaccessibleDirectories=</varname> will be made <varname>InaccessibleDirectories=</varname> will be made
inaccessible for processes inside the namespace. Note that inaccessible for processes inside the namespace, and may not
restricting access with these options does not extend to countain any other mountpoints, including those specified by
submounts of a directory that are created later on. These <varname>ReadWriteDirectories=</varname> or
<varname>ReadOnlyDirectories=</varname>.
Note that restricting access with these options does not extend
to submounts of a directory that are created later on. These
options may be specified more than once, in which case all options may be specified more than once, in which case all
directories listed will have limited access from within the directories listed will have limited access from within the
namespace. If the empty string is assigned to this option, the namespace. If the empty string is assigned to this option, the