X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=man%2Fsystemd.conf.xml;h=2659f9ab7bbbcf0cf8ce19f3d83b48414fe6a3a0;hb=439d6dfd12f58d7230bcae06d73b841eb3bc588a;hp=7dfaa18c184f632412f3c641f9714997ea3ff1e3;hpb=c93ff2e913a6da516c83c0d3f8df73004acc6c8b;p=elogind.git
diff --git a/man/systemd.conf.xml b/man/systemd.conf.xml
index 7dfaa18c1..2659f9ab7 100644
--- a/man/systemd.conf.xml
+++ b/man/systemd.conf.xml
@@ -183,6 +183,38 @@
available.
+
+ CapabilityBoundingSet=
+
+ Controls which
+ capabilities to include in the
+ capability bounding set for PID 1 and
+ its children. See
+ capabilities7
+ for details. Takes a whitespace
+ separated list of capability names as
+ read by
+ cap_from_name3.
+ Capabilities listed will be included
+ in the bounding set, all others are
+ removed. If the list of capabilities
+ is prefixed with ~ all but the listed
+ capabilities will be included, the
+ effect of the assignment
+ inverted. Note that this option also
+ effects the respective capabilities in
+ the effective, permitted and
+ inheritable capability sets. The
+ capability bounding set may also be
+ individually configured for units
+ using the
+ CapabilityBoundingSet=
+ directive for units, but note that
+ capabilities dropped for PID 1 cannot
+ be regained in individual units, they
+ are lost for good.
+
+
DefaultLimitCPU=
DefaultLimitFSIZE=
@@ -200,14 +232,21 @@
DefaultLimitNICE=
DefaultLimitRTPRIO=
DefaultLimitRTTIME=
+
These settings control
- various default resource limits for units. See
+ various default resource limits for
+ units. See
setrlimit2
for details. Use the string
infinity to
configure no limit on a specific
- resource. They can be overriden in units files
- using corresponding LimitXXXX parameter.
+ resource. These settings may be
+ overriden in individual units
+ using the corresponding LimitXXX=
+ directives. Note that these resource
+ limits are only defaults for units,
+ they are not applied to PID 1
+ itself.