From an email conversation with Léo Stefanesco: > In the man7.org version of the man page for user_namespaces(7), it reads: > > there are many privileged operations that affect > resources that are not associated with any namespace type, > for example, changing the system time > (governed by CAP_SYS_TIME) > > which is not consistent with time_namespaces(7). In fact, strictly peaking the text still is correct, even after the arrival of time namespaces. Time namespaces virtualize only the boot-time and monotonic clocks, not the "real time" (i.e., calendar time), which is the time referred in the passage you quote. That said, the text is perhaps now a little misleading, and a little clarification would help. I changed the text to: there are many privileged operations that affect resources are not associated with any namespace type, for example, changing the system **(i.e., calendar)** time (governed by CAP_SYS_TIME) Reported-by: Léo Stefanesco <leo.lveb@gmail.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>