diff options
Diffstat (limited to 'iptables/iptables.8.in')
-rw-r--r-- | iptables/iptables.8.in | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/iptables/iptables.8.in b/iptables/iptables.8.in index 627ff0e4..f81c632f 100644 --- a/iptables/iptables.8.in +++ b/iptables/iptables.8.in @@ -417,6 +417,11 @@ other errors cause an exit code of 1. .SH BUGS Bugs? What's this? ;-) Well, you might want to have a look at http://bugzilla.netfilter.org/ +\fBiptables\fP will exit immediately with an error code of 111 if it finds +that it was called as a setuid-to-root program. +iptables cannot be used safely in this manner because it trusts +the shared libraries (matches, targets) loaded at run time, the search +path can be set using environment variables. .SH COMPATIBILITY WITH IPCHAINS This \fBiptables\fP is very similar to ipchains by Rusty Russell. The main difference is |