setpriv: improve description in man page

author: Sam Morris 2018-03-08 16:43:54 +0100
committer: Sam Morris 2018-03-08 17:21:48 +0100
commit: 64eca6406f15e6bed607ac4f81e72dbb90be86f7 (patch)
tree: 1276e83b75ca62a2ba99c53ba286538e32e561a7 /sys-utils/setpriv.1
parent: docs: add remount-all idea to TODO (diff)
download: kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.tar.gz
kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.tar.xz
kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.zip
1 files changed, 16 insertions, 5 deletions
diff --git a/sys-utils/setpriv.1 b/sys-utils/setpriv.1
index f7f3f572a..8965d8568 100644
--- a/sys-utils/setpriv.1
+++ b/sys-utils/setpriv.1
@@ -10,11 +10,22 @@ setpriv \- run a program with different Linux privilege settings
 Sets or queries various Linux privilege settings that are inherited across
 .BR execve (2).
 .PP
-The difference between the commands setpriv and su (or runuser) is that setpriv does
-not use open PAM session and does not ask for password.
-It's simple non-set-user-ID wrapper around
-.B execve
-system call.
+In comparison to
+.BR su (1)
+and
+.BR runuser (1),
+.BR setpriv (1)
+neither uses PAM, nor does it prompt for a password.
+It is a simple, non-setuid wrapper around
+.BR execve (2),
+and can be used to drop privileges in the same way as
+.BR setuidgid (8)
+from
+.BR daemontools ,
+.BR chpst (8)
+from
+.BR runit ,
+or similar tools shipped by other service managers.
 .SH OPTION
 .TP
 .B \-\-clear\-groups
author	Sam Morris	2018-03-08 16:43:54 +0100
committer	Sam Morris	2018-03-08 17:21:48 +0100
commit	64eca6406f15e6bed607ac4f81e72dbb90be86f7 (patch)
tree	1276e83b75ca62a2ba99c53ba286538e32e561a7 /sys-utils/setpriv.1
parent	docs: add remount-all idea to TODO (diff)
download	kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.tar.gz kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.tar.xz kernel-qcow2-util-linux-64eca6406f15e6bed607ac4f81e72dbb90be86f7.zip