X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=man%2Fsystemd.exec.xml;h=939983fb7e33bb721bc26d16b2a462d4635ddbcf;hp=cfcf996dab8e9d7b1661a60f61b3fdb762248d1b;hb=cb87a73b45503eaa6bead291423a529b00d27156;hpb=79c1afc67f973eaece8f1b7016e016bb33c256a7
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml
index cfcf996da..939983fb7 100644
--- a/man/systemd.exec.xml
+++ b/man/systemd.exec.xml
@@ -776,20 +776,22 @@
SecureBits=Controls the secure
- bits set for the executed process. See
- capabilities7
- for details. Takes a list of strings:
+ bits set for the executed process.
+ Takes a space-separated combination of
+ options from the following list:
,
,
,
,
- and/or
+ , and
. This
option may appear more than once in
- which case the secure bits are
- ORed. If the empty string is assigned
- to this option, the bits are reset to
- 0.
+ which case the secure bits are ORed.
+ If the empty string is assigned to
+ this option, the bits are reset to 0.
+ See capabilities7
+ for details.
@@ -806,7 +808,7 @@
attached to the executed file. Due to
that
CapabilityBoundingSet=
- is probably the much more useful
+ is probably a much more useful
setting.
@@ -1013,7 +1015,7 @@
made inaccessible and empty for
processes invoked by this unit. If set
to read-only, the
- two directores are made read-only
+ two directories are made read-only
instead. It is recommended to enable
this setting for all long-running
services (in particular network-facing
@@ -1059,7 +1061,7 @@
namespace. Note that
means that file
systems mounted on the host might stay
- mounted continously in the unit's
+ mounted continuously in the unit's
namespace, and thus keep the device
busy. Note that the file system
namespace related options
@@ -1533,7 +1535,7 @@
See Alsosystemd1,
- systemctl8,
+ systemctl1,
journalctl8,
systemd.unit5,
systemd.service5,