1 files changed, 5 insertions, 0 deletions
diff --git a/iptables/iptables.8.in b/iptables/iptables.8.in
index 627ff0e4..f81c632f 100644
@@ -417,6 +417,11 @@ other errors cause an exit code of 1.
Bugs? What's this? ;-)
Well, you might want to have a look at http://bugzilla.netfilter.org/
+\fBiptables\fP will exit immediately with an error code of 111 if it finds
+that it was called as a setuid-to-root program.
+iptables cannot be used safely in this manner because it trusts
+the shared libraries (matches, targets) loaded at run time, the search
+path can be set using environment variables.
.SH COMPATIBILITY WITH IPCHAINS
is very similar to ipchains by Rusty Russell. The main difference is