mirror of
https://github.com/containers/podman.git
synced 2025-06-18 07:28:57 +08:00
414642efdb
Move the options for the podman build doc to a common md that can be used by both podman build and podman farm build. Signed-off-by: Urvashi Mohnani <umohnani@redhat.com>
17 lines
714 B
Markdown
17 lines
714 B
Markdown
####> This option file is used in:
|
|
####> podman build, farm build
|
|
####> If file is edited, make sure the changes
|
|
####> are applicable to all of those.
|
|
#### **--cap-drop**=*CAP\_xxx*
|
|
|
|
When executing RUN instructions, run the command specified in the instruction
|
|
with the specified capability removed from its capability set.
|
|
The CAP\_CHOWN, CAP\_DAC\_OVERRIDE, CAP\_FOWNER,
|
|
CAP\_FSETID, CAP\_KILL, CAP\_NET\_BIND\_SERVICE, CAP\_SETFCAP,
|
|
CAP\_SETGID, CAP\_SETPCAP, and CAP\_SETUID capabilities are
|
|
granted by default; this option can be used to remove them.
|
|
|
|
If a capability is specified to both the **--cap-add** and **--cap-drop**
|
|
options, it is dropped, regardless of the order in which the options were
|
|
given.
|