diff options
| -rw-r--r-- | README.newnet | 13 | ||||
| -rw-r--r-- | src/linux-user-chroot-newnet.c | 2 |
2 files changed, 14 insertions, 1 deletions
diff --git a/README.newnet b/README.newnet index 2c247ec..84ea79b 100644 --- a/README.newnet +++ b/README.newnet @@ -27,3 +27,16 @@ network namespace is very high - it does mean that e.g. one could make But most setuid programs *should* be carefully checking errors anyways. +Building +-------- + +To enable building this helper, pass --enable-newnet-helper to +configure. + +Running +------- + +$ linux-user-chroot-newnet curl http://google.com +curl: (6) Could not resolve host: google.com; Unknown error +$ linux-user-chroot-newnet /bin/bash +$ # you're now in a shell without networking diff --git a/src/linux-user-chroot-newnet.c b/src/linux-user-chroot-newnet.c index c08c51e..f8397d1 100644 --- a/src/linux-user-chroot-newnet.c +++ b/src/linux-user-chroot-newnet.c @@ -81,7 +81,7 @@ main (int argc, argv++; if (argc < 1) - fatal ("PROGRAM argument must be specified"); + fatal ("PROGRAM [ARGS]... Run PROGRAM in an isolated network namespace"); program = argv[0]; program_argv = argv; |