aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--man7/user_namespaces.728
1 files changed, 14 insertions, 14 deletions
diff --git a/man7/user_namespaces.7 b/man7/user_namespaces.7
index 319a139bac..afc3234df2 100644
--- a/man7/user_namespaces.7
+++ b/man7/user_namespaces.7
@@ -46,20 +46,6 @@ while at the same time having a user ID of 0 inside the namespace;
in other words,
the process has full privileges for operations inside the user namespace,
but is unprivileged for operations outside the namespace.
-
-Use of user namespaces requires a kernel that is configured with the
-.B CONFIG_USER_NS
-option.
-User namespaces require support in a range of subsystems across
-the kernel.
-When an unsupported subsystem is configured into the kernel,
-it is not possible to configure user namespaces support.
-As at Linux 3.8, most relevant subsystems support user namespaces,
-but there are a number of file systems that do not.
-Linux 3.9 added user namespaces support for many of the remaining
-unsupported file systems:
-Plan 9 (9P), Andrew File System (AFS), Ceph, CIFS, CODA, NFS, and OCFS2.
-XFS support for user namespaces is not yet available.
.\"
.\" ============================================================
.\"
@@ -574,6 +560,20 @@ because of their potential to confuse set-user-ID-root applications.
In general, it becomes safe to allow the root user in a user namespace to
use those features because it is impossible, while in a user namespace,
to gain more privilege than the root user of a user namespace has.
+.SS Availability
+Use of user namespaces requires a kernel that is configured with the
+.B CONFIG_USER_NS
+option.
+User namespaces require support in a range of subsystems across
+the kernel.
+When an unsupported subsystem is configured into the kernel,
+it is not possible to configure user namespaces support.
+As at Linux 3.8, most relevant subsystems support user namespaces,
+but there are a number of file systems that do not.
+Linux 3.9 added user namespaces support for many of the remaining
+unsupported file systems:
+Plan 9 (9P), Andrew File System (AFS), Ceph, CIFS, CODA, NFS, and OCFS2.
+XFS support for user namespaces is not yet available.
.SH EXAMPLE
The program below is designed to allow experimenting with
user namespaces, as well as other types of namespaces.
generated by cgit 1.2.3-korg (git 2.43.0) at 2025-12-01 06:11:10 +0000