Running as unprivileged user
----------------------------
-:program:`dnsdist` can drop privileges using the ``--uid`` and ``--gid`` command line switches
-to ensure it does not run with root privileges after binding its listening sockets.
-It is highly recommended to create a system user and group for :program:`dnsdist`. Note that
-most packaged versions of :program:`dnsdist` already create this user.
-
+:program:`dnsdist` can drop privileges using the ``--uid`` and ``--gid`` command line switches to ensure it does not run with root privileges.
+Note that :program:`dnsdist` drops its privileges **after** parsing its startup configuration and binding its listening and initial :func:`newServer` sockets as user `root`.
+It is highly recommended to create a system user and group for :program:`dnsdist`.
+Note that most packaged versions of :program:`dnsdist` already create this user.