singularity-capability-drop - Man Page

Remove capabilities from a user or group (requires root)

Synopsis

singularity capability drop [drop options...]

Description

Remove Linux capabilities from a user/group. NOTE: This command requires root
 to run.

The capabilities argument must be separated by commas and is not case
 sensitive.

To see available capabilities, type "singularity capability avail" or refer to
 capabilities manual "man 7 capabilities"

Options

-g, --group="" manage capabilities for a group

-h, --help[=false] help for drop

-u, --user="" manage capabilities for a user

Example

  $ sudo singularity capability drop --user nobody AUDIT_READ,CHOWN
  $ sudo singularity capability drop --group nobody audit_write

  To drop all capabilities for a user:

  $ sudo singularity capability drop --user nobody all

See Also

singularity-capability(1)

History

27-Jan-2021 Auto generated by spf13/cobra

Referenced By

singularity-capability(1).

Jan 2021 Auto generated by spf13/cobra