diff options
| author | Dave Reisner <dreisner@archlinux.org> | 2012-11-05 12:50:19 -0500 |
|---|---|---|
| committer | Dave Reisner <dreisner@archlinux.org> | 2012-11-05 21:17:55 -0500 |
| commit | aea54018a5e66a41318afb6c6be745b6aef48d9e (patch) | |
| tree | a76adbe80c82522b3a15f2a46d6e4258905727d3 /man | |
| parent | edca2e2348b314e2d892fe6f8ae276fdc223f014 (diff) | |
Implement SocketUser= and SocketGroup= for [Socket]
Since we already allow defining the mode of AF_UNIX sockets and FIFO, it
makes sense to also allow specific user/group ownership of the socket
file for restricting access.
Diffstat (limited to 'man')
| -rw-r--r-- | man/systemd.socket.xml | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/man/systemd.socket.xml b/man/systemd.socket.xml index 4b1fcc8b0c..dc0d78f0a2 100644 --- a/man/systemd.socket.xml +++ b/man/systemd.socket.xml @@ -358,6 +358,30 @@ </varlistentry> <varlistentry> + <term><varname>SocketUser=</varname></term> + <listitem><para>If listening on a file system + socket or FIFO, this option specifies the + user owner of the created socket. When + defining this, keep in mind that name + switch services for user name lookups may + not be available. It is advisable to use a + numeric UID for this + setting.</para></listitem> + </varlistentry> + + <varlistentry> + <term><varname>SocketGroup=</varname></term> + <listitem><para>If listening on a file system + socket or FIFO, this option specifies the + group owner of the created socket. When + defining this, keep in mind that name + switch services for group name lookups may + not be available. It is advisable to use a + numeric GID for this + setting.</para></listitem> + </varlistentry> + + <varlistentry> <term><varname>Accept=</varname></term> <listitem><para>Takes a boolean argument. If true, a service instance |