sbase/unshare.1

44 lines
1.5 KiB
Groff
Raw Normal View History

.TH UNSHARE 1 ubase-VERSION
.SH NAME
\fBunshare\fR - run program with some namespaces unshared from parent
.SH SYNOPSIS
\fBunshare\fR [\fB-muinpU\fR] cmd [\fIargs...\fR]
.SH DESCRIPTION
\fBunshare\fR
Unshares the indicated namespaces from the parent process
and then executes the specified program. The namespaces to be unshared are
indicated via options.
.SH OPTIONS
.TP
\fB-m\fR
Unshare the mount namespace, so that the calling process has a private
copy of its namespace which is not shared with any other process.
This flag has the same effect as the \fBclone(2) CLONE_NEWNS\fR flag.
.TP
\fB-u\fR
Unshare the UTS IPC namespace, so that the calling process has a
private copy of the UTS namespace which is not shared with any other
process. This flag has the same effect as the \fBclone(2) CLONE_NEWUTS\fR
flag.
.TP
\fB-i\fR
Unshare the System V IPC namespace, so that the calling process has a
private copy of the System V IPC namespace which is not shared with
2014-04-13 21:13:58 +00:00
any other process. This flag has the same effect as the \fBclone(2)
CLONE_NEWIPC\fR flag
.TP
\fB-n\fR
Unshare the network namespace, so that the calling process is moved
into a new network namespace which is not shared with any previously
2014-04-13 21:13:58 +00:00
existing process. This flag has the same effect as the \fBclone(2)
CLONE_NEWNET\fR flag.
.TP
\fB-p\fR
2014-04-13 21:13:58 +00:00
Create the process in a new PID namespace. This flag has the same
effect as the \fBclone(2) CLONE_NEWPID\fR flag.
.TP
\fB-U\fR
The process will have a distinct set of UIDs, GIDs and capabilities.
2014-04-13 21:13:58 +00:00
.SH SEE ALSO
clone(2), unshare(2)