diff options
author | Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> | 2017-10-18 08:37:12 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2017-10-18 08:37:12 +0200 |
commit | 895265ad7d280e5f5f6e1da90e65074f5136eea1 (patch) | |
tree | 108cdde8d6d6fde84563b7485c05c5da697d8c36 /man/systemd.exec.xml | |
parent | c85f1346c0e96edccbf3213328334cb80c64508c (diff) | |
parent | 3bd493dc93e1be976fb9868c349a4711b97d2790 (diff) | |
download | systemd-895265ad7d280e5f5f6e1da90e65074f5136eea1.tar.gz |
Merge pull request #7059 from yuwata/dynamic-user-7013
dynamic-user: permit the case static uid and gid are different
Diffstat (limited to 'man/systemd.exec.xml')
-rw-r--r-- | man/systemd.exec.xml | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml index 802eb41c47..2f5192eb60 100644 --- a/man/systemd.exec.xml +++ b/man/systemd.exec.xml @@ -206,7 +206,10 @@ enabled for a unit, the name of the dynamic user/group is implicitly derived from the unit name. If the unit name without the type suffix qualifies as valid user name it is used directly, otherwise a name incorporating a hash of it is used. If a statically allocated user or group of the configured name already exists, it is used - and no dynamic user/group is allocated. Dynamic users/groups are allocated from the UID/GID range + and no dynamic user/group is allocated. Note that if <varname>User=</varname> is specified and the static group + with the name exists, then it is required that the static user with the name already exists. Similarly, + if <varname>Group=</varname> is specified and the static user with the name exists, then it is required that + the static group with the name already exists. Dynamic users/groups are allocated from the UID/GID range 61184…65519. It is recommended to avoid this range for regular system or login users. At any point in time each UID/GID from this range is only assigned to zero or one dynamically allocated users/groups in use. However, UID/GIDs are recycled after a unit is terminated. Care should be taken that any processes running |