diff options
author | netblue30 <netblue30@protonmail.com> | 2022-06-03 07:52:49 -0400 |
---|---|---|
committer | netblue30 <netblue30@protonmail.com> | 2022-06-03 07:52:49 -0400 |
commit | a1f6bdf414f283854aacd57c7f74b8ac3eed292c (patch) | |
tree | ef5c83afb048a422efd1dd4cb9fba2dfac123396 | |
parent | more relnotes (diff) | |
download | firejail-a1f6bdf414f283854aacd57c7f74b8ac3eed292c.tar.gz firejail-a1f6bdf414f283854aacd57c7f74b8ac3eed292c.tar.zst firejail-a1f6bdf414f283854aacd57c7f74b8ac3eed292c.zip |
removed enforcement of nonewprivs for --noprofile
-rw-r--r-- | RELNOTES | 1 | ||||
-rw-r--r-- | src/firejail/main.c | 2 | ||||
-rw-r--r-- | src/man/firejail.txt | 2 |
3 files changed, 1 insertions, 4 deletions
@@ -1,6 +1,5 @@ | |||
1 | firejail (0.9.69) baseline; urgency=low | 1 | firejail (0.9.69) baseline; urgency=low |
2 | * work in progress | 2 | * work in progress |
3 | * modif: --noprofile enforces nonewprivs | ||
4 | * modif: --nettrace only available to root user | 3 | * modif: --nettrace only available to root user |
5 | * modif: --ids feature needs to be enabled at compile time (#5155) | 4 | * modif: --ids feature needs to be enabled at compile time (#5155) |
6 | * feature: enable shell tab completion (#4936) | 5 | * feature: enable shell tab completion (#4936) |
diff --git a/src/firejail/main.c b/src/firejail/main.c index e1f19dd14..7344be23a 100644 --- a/src/firejail/main.c +++ b/src/firejail/main.c | |||
@@ -1883,8 +1883,6 @@ int main(int argc, char **argv, char **envp) { | |||
1883 | arg_noprofile = 1; | 1883 | arg_noprofile = 1; |
1884 | // force keep-config-pulse in order to keep ~/.config/pulse as is | 1884 | // force keep-config-pulse in order to keep ~/.config/pulse as is |
1885 | arg_keep_config_pulse = 1; | 1885 | arg_keep_config_pulse = 1; |
1886 | // force nonewprivs | ||
1887 | arg_nonewprivs = 1; | ||
1888 | } | 1886 | } |
1889 | else if (strncmp(argv[i], "--ignore=", 9) == 0) { | 1887 | else if (strncmp(argv[i], "--ignore=", 9) == 0) { |
1890 | if (custom_profile) { | 1888 | if (custom_profile) { |
diff --git a/src/man/firejail.txt b/src/man/firejail.txt index 5f352c843..a18b53fea 100644 --- a/src/man/firejail.txt +++ b/src/man/firejail.txt | |||
@@ -1696,7 +1696,7 @@ Disable printers. | |||
1696 | 1696 | ||
1697 | .TP | 1697 | .TP |
1698 | \fB\-\-noprofile | 1698 | \fB\-\-noprofile |
1699 | Do not use a security profile. nonewprivs is enforced for this option. | 1699 | Do not use a security profile. |
1700 | .br | 1700 | .br |
1701 | 1701 | ||
1702 | .br | 1702 | .br |