tmpdir.c: Explain why we reject candidates, if we do.

[checkpath] / chkpath.1

diff --git a/chkpath.1 b/chkpath.1
index f8ce180..181cc09 100644 (file)
--- a/chkpath.1
+++ b/chkpath.1
@@ -5,6 +5,8 @@ chkpath \- check a path string for security
 .SH SYNOPSIS
 .B chkpath
 .RB [ \-vqstp ]
 .SH SYNOPSIS
 .B chkpath
 .RB [ \-vqstp ]

+.RB [ \-g
+.IR group ]

 .RI [ path ...]
 .SH USAGE
 The
 .RI [ path ...]
 .SH USAGE
 The


@@ -46,7 +48,7 @@ Displays a relatively verbose message describing how to use
 .TP
 .B "\-V, \-\-version"
 Displays
 .TP
 .B "\-V, \-\-version"
 Displays

-.BR chkpath 's 
+.BR chkpath 's

 version number.
 .TP
 .B "\-u, \-\-usage"
 version number.
 .TP
 .B "\-u, \-\-usage"


@@ -60,6 +62,19 @@ effect, so put more in for more verbosity.  Note that verbose doesn't
 mean the same as interesting.  The default is to report problems with
 directories and system errors.
 .TP
 mean the same as interesting.  The default is to report problems with
 directories and system errors.
 .TP

+.B "\-g, \-\-group " group
+Consider members of
+.I group
+to be trustworthy:
+.B chkpath
+won't warn about a directory being group-writable if its gid matches
+.IR group .
+The
+.I group
+may be a group name (looked up in
+.BR /etc/group )
+or a numeric gid in decimal.
+.TP

 .B "\-q, \-\-quiet"
 Makes
 .B chkpath
 .B "\-q, \-\-quiet"
 Makes
 .B chkpath