aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorRalf S. Engelschall <rse@FreeBSD.org>2005-12-29 13:39:46 +0000
committerRalf S. Engelschall <rse@FreeBSD.org>2005-12-29 13:39:46 +0000
commit66c6b326543894776c17486b5932438e9dd098c9 (patch)
tree0955c7fc8989e5a7ec96e31197b284b962304d88
parentf71ba3d4a74d8c0041efc7d29d9e94a192b8e48b (diff)
downloadsrc-66c6b326543894776c17486b5932438e9dd098c9.tar.gz
src-66c6b326543894776c17486b5932438e9dd098c9.zip
Fix semantics in the documentation of the "jail_socket_unixiproute_only"
variable ("YES" vs. "NO") and be more precise and intuitive on what is actually allowed/restricted by this variable ("UNIX/IP/route sockets" vs. "TCP/IP protocols"). MFC after: 3 days
Notes
Notes: svn path=/head/; revision=153837
-rw-r--r--share/man/man5/rc.conf.56
1 files changed, 3 insertions, 3 deletions
diff --git a/share/man/man5/rc.conf.5 b/share/man/man5/rc.conf.5
index f6d3d4a295dc..5a732b82af01 100644
--- a/share/man/man5/rc.conf.5
+++ b/share/man/man5/rc.conf.5
@@ -2960,9 +2960,9 @@ do not allow the root user in a jail to set its hostname.
.It Va jail_socket_unixiproute_only
.Pq Vt bool
If set to
-.Dq Li NO ,
-do not allow any protocol,
-besides TCP/IP,
+.Dq Li YES ,
+do not allow any sockets,
+besides UNIX/IP/route sockets,
to be used within a jail.
.It Va jail_sysvipc_allow
.Pq Vt bool