seunshare

Langue: en

Version: 385310 (fedora - 01/12/10)

Section: 8 (Commandes administrateur)

NAME

seunshare - Run cmd with alternate homedir, tmpdir and/or SELinux context

SYNOPSIS

seunshare [ -v ] [ -t tmpdir ] [ -h homedir ] [ -Z context ] -- executable [args]

DESCRIPTION

Run the executable within the specified context, using the alternate home directory and /tmp directory. The seunshare command unshares from the default namespace, then mounts the specified homedir and tmpdir over the default homedir and /tmp. Finally it tells the kernel to execute the application under the specified SELinux context.

-h homedir
Alternate homedir to be used by the application. Homedir must be owned by the user.
-t tmpdir
Use alternate tempory directory to mount on /tmp. tmpdir must be owned by the user.
-c cgroups
Use cgroups to control this copy of seunshare. Specify parameters in /etc/sysconfig/sandbox. Max memory usage and cpu usage are to be specified in percent. You can specify which CPUs to use by numbering them 0,1,2... etc.
-Z context
Use alternate SELinux context while runing the executable.
-v
Verbose output

SEE ALSO

runcon(1), sandbox(8), selinux(8)      

AUTHOR

This manual page was written by
Dan Walsh <dwalsh@redhat.com> and Thomas Liu <tliu@fedoraproject.org>