From f419ffb46d34654e69e8dba3174bba3bc192f5c4 Mon Sep 17 00:00:00 2001
From: Ian Gudger <igudger@google.com>
Date: Tue, 2 Apr 2019 10:49:24 -0700
Subject: Add that veth is not required if networking is disabled.

---
 content/docs/architecture_guide/security.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'content/docs/architecture_guide')

diff --git a/content/docs/architecture_guide/security.md b/content/docs/architecture_guide/security.md
index dfc7591ba..849c15744 100644
--- a/content/docs/architecture_guide/security.md
+++ b/content/docs/architecture_guide/security.md
@@ -138,7 +138,7 @@ We allow a sandbox to do the following.
     files. The calls include duplication and closing of file descriptors,
     synchronization, timers and signal management.
  1. Read and write packets to a virtual ethernet device. This is not required if
-    host networking is enabled.
+    host networking is enabled (or networking is disabled).
 
 ## Principles: Defense-in-Depth
 
-- 
cgit v1.2.3