diff options
| author | Laurent Bercot <ska-skaware@skarnet.org> | 2017-12-11 19:11:23 +0000 |
|---|---|---|
| committer | Laurent Bercot <ska-skaware@skarnet.org> | 2017-12-11 19:11:23 +0000 |
| commit | 1a7a0c79040d9efa654c151d8a057f34eb9be585 (patch) | |
| tree | 8874b1684780bba3713fdb59d85fdea7b5a1086a /doc | |
| parent | 6ee2e470aa4c66b3477449e7f48343b706c70ddc (diff) | |
| download | s6-1a7a0c79040d9efa654c151d8a057f34eb9be585.tar.xz | |
Add "-a perms" option to s6-ipcserver(-socketbinder)
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/s6-ipcserver-socketbinder.html | 6 | ||||
| -rw-r--r-- | doc/s6-ipcserver.html | 4 |
2 files changed, 9 insertions, 1 deletions
diff --git a/doc/s6-ipcserver-socketbinder.html b/doc/s6-ipcserver-socketbinder.html index 6a291fa..ce43d50 100644 --- a/doc/s6-ipcserver-socketbinder.html +++ b/doc/s6-ipcserver-socketbinder.html @@ -26,7 +26,7 @@ socket, then executes a program. <h2> Interface </h2> <pre> - s6-ipcserver-socketbinder [ -d | -D ] [ -b <em>backlog</em> ] [ -M | -m ] <em>path</em> <em>prog...</em> + s6-ipcserver-socketbinder [ -d | -D ] [ -b <em>backlog</em> ] [ -M | -m ] [ -a <em>perms</em> ] <em>path</em> <em>prog...</em> </pre> <ul> @@ -59,6 +59,10 @@ the default. </li> that by default SOCK_DGRAM sockets are not connection-mode, and <tt>listen()</tt> will fail - so you should always give the <tt>-b0</tt> option to s6-ipcserver-socketbinder along with <tt>-m</tt>. </li> + <li> <tt>-a <em>perms</em></tt> : create the socket with +permissions <em>perms</em>, which is an octal number from 0000 to 0777. +Default is 0777, meaning everyone can connect to it. 0700 means only processes having the +same uid as the s6-ipcserver-socketbinder process can connect to it. </li> </ul> <h2> Notes </h2> diff --git a/doc/s6-ipcserver.html b/doc/s6-ipcserver.html index 4d73db1..829febb 100644 --- a/doc/s6-ipcserver.html +++ b/doc/s6-ipcserver.html @@ -108,6 +108,10 @@ Default is 40. It is impossible to set it higher than <em>maxconn</em>. </li> <li> <tt>-b <em>backlog</em></tt> : set a maximum of <em>backlog</em> backlog connections on the socket. Extra connection attempts will rejected by the kernel. </li> + <li> <tt>-a <em>perms</em></tt> : create the socket with +permissions <em>perms</em>, which is an octal number from 0000 to 0777. +Default is 0777, meaning everyone can connect to it. 0700 means only processes having the +same uid as the s6-ipcserver process can connect to it. </li> <li> <tt>-G <em>gidlist</em></tt> : change s6-ipcserver's supplementary group list to <em>gidlist</em> after binding the socket. This is only valid when run as root. <em>gidlist</em> must be a |