From 88f0cd597773fe896f9a144088c717f05b19b90f Mon Sep 17 00:00:00 2001 From: Christian Pointner Date: Wed, 28 Jan 2009 23:46:40 +0000 Subject: droping privileges without chroot is now possible --- doc/uanytun.8.txt | 30 ++++++++++++++++-------------- 1 file changed, 16 insertions(+), 14 deletions(-) (limited to 'doc') diff --git a/doc/uanytun.8.txt b/doc/uanytun.8.txt index 3364294..319a206 100644 --- a/doc/uanytun.8.txt +++ b/doc/uanytun.8.txt @@ -11,9 +11,9 @@ SYNOPSIS *uanytun* [ *-h|--help* ] [ *-D|--nodaemonize* ] -[ *-C|--chroot* ] [ *-u|--username* ] -[ *-H|--chroot-dir* ] +[ *-g|--groupname* ] +[ *-C|--chroot* ] [ *-P|--write-pid* ] [ *-i|--interface* ] [ *-p|--port* ] @@ -56,30 +56,32 @@ passed to the daemon: -D|--nodaemonize ~~~~~~~~~~~~~~~~ -This option instructs *uAnytun* to run in the foreground +This option instructs *uAnytun* to run in foreground instead of becoming a daemon which is the default. --C|--chroot -~~~~~~~~~~~ - -Instruct *uAnytun* to run in a chroot chail and drop privileges. The -default is not to run in chroot. - -u|--username ~~~~~~~~~~~~~~~~~~~~~~~~ -if chroot change to this user. default: nobody +run as this user. If no group is specified (*-g*) the default group of +the user is used. The default is to not drop privileges. --H|--chroot-dir -~~~~~~~~~~~~~~~~~~~~~~~~~~~ +-g|--groupname +~~~~~~~~~~~~~~~~~~~~~~~~~~ + +run as this group. If no username is specified (*-u*) this gets ignored. +The default is to not drop privileges. + +-C|--chroot +~~~~~~~~~~~~~~~~~~ -chroot to this directory. default: /var/run/uanytun +Instruct *uAnytun* to run in a chroot jail. The default is +to not run in chroot. -P|--write-pid ~~~~~~~~~~~~~~~~~~~~~~~~~ Instruct *uAnytun* to write it's pid to this file. The default is -not to create a pid file. +to not create a pid file. -i|--interface ~~~~~~~~~~~~~~~~~~~~~~~~~~~ -- cgit v1.2.3