diff options
author | smitsohu <smitsohu@gmail.com> | 2021-10-23 02:15:09 +0200 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2021-10-23 02:15:09 +0200 |
commit | d7269a648be105af16489804e57b21e8e6a96c30 (patch) | |
tree | 8e2373d96e6bd90c13b88189fe057af4c09a6d00 | |
parent | cleanup (diff) | |
download | firejail-d7269a648be105af16489804e57b21e8e6a96c30.tar.gz firejail-d7269a648be105af16489804e57b21e8e6a96c30.tar.zst firejail-d7269a648be105af16489804e57b21e8e6a96c30.zip |
disable-exec: add /run/shm
-rw-r--r-- | etc/inc/disable-exec.inc | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/etc/inc/disable-exec.inc b/etc/inc/disable-exec.inc index 9b5c40a2b..d7dcef7e7 100644 --- a/etc/inc/disable-exec.inc +++ b/etc/inc/disable-exec.inc | |||
@@ -6,6 +6,7 @@ noexec ${HOME} | |||
6 | noexec ${RUNUSER} | 6 | noexec ${RUNUSER} |
7 | noexec /dev/mqueue | 7 | noexec /dev/mqueue |
8 | noexec /dev/shm | 8 | noexec /dev/shm |
9 | noexec /run/shm | ||
9 | noexec /tmp | 10 | noexec /tmp |
10 | # /var is noexec by default for unprivileged users | 11 | # /var is noexec by default for unprivileged users |
11 | # except there is a writable-var option, so just in case: | 12 | # except there is a writable-var option, so just in case: |