diff options
author | Sam Morris | 2018-03-08 16:43:54 +0100 |
---|---|---|
committer | Sam Morris | 2018-03-08 17:21:48 +0100 |
commit | 64eca6406f15e6bed607ac4f81e72dbb90be86f7 (patch) | |
tree | 1276e83b75ca62a2ba99c53ba286538e32e561a7 /sys-utils/setpriv.1 | |
parent | docs: add remount-all idea to TODO (diff) | |
download | kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.tar.gz kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.tar.xz kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.zip |
setpriv: improve description in man page
Diffstat (limited to 'sys-utils/setpriv.1')
-rw-r--r-- | sys-utils/setpriv.1 | 21 |
1 files changed, 16 insertions, 5 deletions
diff --git a/sys-utils/setpriv.1 b/sys-utils/setpriv.1 index f7f3f572a..8965d8568 100644 --- a/sys-utils/setpriv.1 +++ b/sys-utils/setpriv.1 @@ -10,11 +10,22 @@ setpriv \- run a program with different Linux privilege settings Sets or queries various Linux privilege settings that are inherited across .BR execve (2). .PP -The difference between the commands setpriv and su (or runuser) is that setpriv does -not use open PAM session and does not ask for password. -It's simple non-set-user-ID wrapper around -.B execve -system call. +In comparison to +.BR su (1) +and +.BR runuser (1), +.BR setpriv (1) +neither uses PAM, nor does it prompt for a password. +It is a simple, non-setuid wrapper around +.BR execve (2), +and can be used to drop privileges in the same way as +.BR setuidgid (8) +from +.BR daemontools , +.BR chpst (8) +from +.BR runit , +or similar tools shipped by other service managers. .SH OPTION .TP .B \-\-clear\-groups |