diff options
| -rw-r--r-- | man7/user_namespaces.7 | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/man7/user_namespaces.7 b/man7/user_namespaces.7 index 935ef3d000..64506915a3 100644 --- a/man7/user_namespaces.7 +++ b/man7/user_namespaces.7 @@ -869,12 +869,13 @@ that field is displayed as 4294967295 (\-1 as an unsigned integer). .\" .SS Accessing files .PP -In order to determine permissions when an unprivileged process accesses a file -(or other resource such as a System V IPC object), +In order to determine permissions when an unprivileged process accesses a file, the process credentials (UID, GID) and the file credentials are in effect mapped back to what they would be in the initial user namespace and then compared to determine the permissions that the process has on the file. +The same is also of other objects that employ the credentials plus +permissions mask accessibility model, such as System V IPC objects .\" .\" ============================================================ .\" |