CASPERD(8) BSD System Manager's Manual CASPERD(8) NAME casperd -- Capability Services friendly daemon SYNOPSIS casperd [-Fhv] [-D servconfdir] [-P pidfile] [-S sockpath] [-Fhv] [-D servconfdir] [-P pidfile] [-S sockpath] DESCRIPTION The casperd daemon hosts various services that can be accessed through libcapsicum's capabilities by programs running in sandboxes. For example it is prohibited to send UDP packets to arbitrary destinations when operating in capability mode, which makes DNS resolution impossi- ble. To make it possible the casperd daemon provides the system.dns service that proxies DNS resolution requests through a dedicated, non- sandboxed process provided by casperd. The casperd daemon can be started with the following command line arguments: -D servconfdir Specify alternative location of the service configuration directory. The default location is /etc/casper/. -F Start the casperd daemon in the foreground. By default casperd starts in the background. -h Print the casperd usage message. -P pidfile Specify alternative location of a file where main process PID will be stored. The default location is /var/run/casperd.pid. -S sockpath Specify alternative location of the unix(4) domain socket used to connect to the casperd daemon. The default location is /var/run/casper. -v Print or log verbose/debugging information. This option can be specified multiple times to raise the verbosity level. FILES /etc/casper/ The configuration directory for casperd services. /var/run/casper unix(4) domain socket used to connect to the casperd daemon. /var/run/casperd.pid The default location of the casperd PID file. EXIT STATUS The casperd daemon exits 0 on success, and >0 if an error occurs. SEE ALSO cap_enter(2), libcapsicum(3), pidfile(3), capsicum(4), unix(4) AUTHORS The casperd was implemented by Pawel Jakub Dawidek <pawel@dawidek.net> under sponsorship from the FreeBSD Foundation. BSD October 26, 2013 BSD