1apptainer(1) apptainer(1)
2
3
4
6 apptainer-capability-drop - Remove capabilities from a user or group
7 (requires root)
8
9
10
12 apptainer capability drop [drop options...]
13
14
15
17 Remove Linux capabilities from a user/group. NOTE: This command re‐
18 quires root
19 to run.
20
21
22 The capabilities argument must be separated by commas and is not case
23 sensitive.
24
25
26 To see available capabilities, type "apptainer capability avail" or re‐
27 fer to
28 capabilities manual "man 7 capabilities"
29
30
31
33 -g, --group="" manage capabilities for a group
34
35
36 -h, --help[=false] help for drop
37
38
39 -u, --user="" manage capabilities for a user
40
41
42
44 $ sudo apptainer capability drop --user nobody AUDIT_READ,CHOWN
45 $ sudo apptainer capability drop --group nobody audit_write
46
47 To drop all capabilities for a user:
48
49 $ sudo apptainer capability drop --user nobody all
50
51
52
53
55 apptainer-capability(1)
56
57
58
60 10-Jan-2023 Auto generated by spf13/cobra
61
62
63
64Auto generated by spf13/cobra Jan 2023 apptainer(1)