diff options
| author | Daniel J Walsh <dwalsh@redhat.com> | 2022-09-05 07:23:03 -0400 |
|---|---|---|
| committer | Matthew Heon <mheon@redhat.com> | 2022-09-06 15:10:20 -0400 |
| commit | bee994bf6431f94399342f9b20ccf3bb8ca91016 (patch) | |
| tree | c62bd473a8ebb8341515a453bc4afb04c9850fca | |
| parent | 5cb27f3c85e517954e81f129deb0e492511a814f (diff) | |
| download | podman-bee994bf6431f94399342f9b20ccf3bb8ca91016.tar.gz podman-bee994bf6431f94399342f9b20ccf3bb8ca91016.tar.bz2 podman-bee994bf6431f94399342f9b20ccf3bb8ca91016.zip | |
Fix list of default capabilities
Fixes: https://github.com/containers/podman/issues/15626
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
| -rw-r--r-- | docs/source/markdown/podman-build.1.md | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/docs/source/markdown/podman-build.1.md b/docs/source/markdown/podman-build.1.md index 745f0bdf3..321755f38 100644 --- a/docs/source/markdown/podman-build.1.md +++ b/docs/source/markdown/podman-build.1.md @@ -169,8 +169,8 @@ more. When executing RUN instructions, run the command specified in the instruction with the specified capability removed from its capability set. -The CAP\_AUDIT\_WRITE, CAP\_CHOWN, CAP\_DAC\_OVERRIDE, CAP\_FOWNER, -CAP\_FSETID, CAP\_KILL, CAP\_MKNOD, CAP\_NET\_BIND\_SERVICE, CAP\_SETFCAP, +The CAP\_CHOWN, CAP\_DAC\_OVERRIDE, CAP\_FOWNER, +CAP\_FSETID, CAP\_KILL, CAP\_NET\_BIND\_SERVICE, CAP\_SETFCAP, CAP\_SETGID, CAP\_SETPCAP, CAP\_SETUID, and CAP\_SYS\_CHROOT capabilities are granted by default; this option can be used to remove them. |