.TH CHROOTUID 1 
.ad
.fi
.SH NAME
chrootuid
\-
run command in restricted environment
.SH SYNOPSIS
.na
.nf
\fBchrootuid\fR [-i] \fInewroot newuser command\fR...
.SH DESCRIPTION
.ad
.fi
The \fBchrootuid\fR command sets up a restricted environment for
executing \fIcommand\fR. Access to the file system is restricted to
the \fInewroot\fR subtree; privileges are restricted to those of
the \fInewuser\fR account (which must be a known account in the
unrestricted environment).
The initial working directory is changed to \fInewroot\fR.

\fBchrootuid\fR combines chroot(8) and su(1) into one program, so
that there is no need to have commands such as /usr/bin/su
in the restricted environment.

Only the superuser can use the \fBchrootuid\fR command.

.SH OPTIONS
.ad
.fi
There is only one option for \fBchrootuid\fR: -i. That option makes it
run in \fIinteractive\fR mode. Errors will be printed on stderr instead of through 
syslog and the exit status will be 1 if there are any errors.

.SH RETURN CODES
.ad
.fi
The exit status of \fBchrootuid\fR when running on \fIdaemon\fR mode 
(default) is always 0. 

If it is running on \fIinteractive\fR mode, it will exit with an exit status of
1 if there is any error in its invocation, otherwise the exit status is the
exit status of \fIcommand\fR.
.SH DIAGNOSTICS
.ad
.fi
Problems are reported to the syslog daemon if running on \fIdaemon\fR mode.
If running on \fIinteractive\fR mode, errors are reported on stderr.
.SH SEE ALSO
.na
.nf
chroot(8), su(1)
.SH AUTHOR(S)
.na
.nf
Wietse Venema
Eindhoven University of Technology
Department of Mathematics and Computer Science
Den Dolech 2, P.O. Box 513, 5600 MB Eindhoven, The Netherlands

IBM T.J. Watson Research
P.O. Box 704
Yorktown Heights, NY 10598, USA
.SH CREATION DATE
.na
.nf
Tue Oct 13 11:37:29 MET 1992
.SH LAST MODIFICATION
.na
.nf
Mon May 20 22:49:02 CEST 2007
.SH VERSION/RELEASE
.na
.nf
1.3