Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 2cdde52

Browse files
vivi
committed
Describe ambient capabilities in the manpage
1 parent 4c635d0 commit 2cdde52

File tree

1 file changed

+10
-0
lines changed

1 file changed

+10
-0
lines changed

dived.1

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -264,6 +264,16 @@ set and lock SECBIT_NO_SETUID_FIXUP and SECBIT_NOROOT
264264
This makes root user (uid=0) non-special for the kernel.
265265
To be used in conjunction with capabilities (-B and -c options).
266266

267+
.TP
268+
.B -m, --ambient-capabilities
269+
270+
Make specified permitted and inheritable capabilities ambient, allowing them to be preserved across execve.
271+
272+
Minimum Linux kernel version is 4.3
273+
274+
Example:
275+
276+
USER=vi HOME=/home/vi dived -J -S -T -c CAP_NET_BIND_SERVICE+ip -m CAP_NET_BIND_SERVICE -u vi -- bash
267277

268278
.TP
269279
.B -M, --no-umask

0 commit comments

Comments
 (0)