man: ProtectHome= protects /root as well

author Christian Hesse <mail@eworm.de>

Tue, 30 Jun 2015 17:12:20 +0000 (19:12 +0200)

committer Christian Hesse <mail@eworm.de>

Tue, 30 Jun 2015 17:12:20 +0000 (19:12 +0200)
author Christian Hesse <mail@eworm.de>
Tue, 30 Jun 2015 17:12:20 +0000 (19:12 +0200)
committer Christian Hesse <mail@eworm.de>
Tue, 30 Jun 2015 17:12:20 +0000 (19:12 +0200)
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml

index 64877720bcc14c2fd0e7981e4849fabf43c67e0a..45a4422dc34ce804a4082d811232545f9d54e394 100644 (file)
--- a/man/systemd.exec.xml
+++ b/man/systemd.exec.xml
@@ -858,9 +858,10 @@
  
          <listitem><para>Takes a boolean argument or
          <literal>read-only</literal>. If true, the directories
-        <filename>/home</filename> and <filename>/run/user</filename>
+        <filename>/home</filename>, <filename>/root</filename> and
+        <filename>/run/user</filename>
          are made inaccessible and empty for processes invoked by this
-        unit. If set to <literal>read-only</literal>, the two
+        unit. If set to <literal>read-only</literal>, the three
          directories are made read-only instead. It is recommended to
          enable this setting for all long-running services (in
          particular network-facing ones), to ensure they cannot get
author	Christian Hesse <mail@eworm.de>
	Tue, 30 Jun 2015 17:12:20 +0000 (19:12 +0200)
committer	Christian Hesse <mail@eworm.de>
	Tue, 30 Jun 2015 17:12:20 +0000 (19:12 +0200)