diff options
author | netblue30 <netblue30@protonmail.com> | 2021-02-20 10:06:58 -0500 |
---|---|---|
committer | netblue30 <netblue30@protonmail.com> | 2021-02-20 10:06:58 -0500 |
commit | 42e2db1275e37bf669a074c023ea9f9a8b40db43 (patch) | |
tree | 59169acd88cbce9160b1657a7016c789559e0e20 /README.md | |
parent | run sort.py (diff) | |
download | firejail-42e2db1275e37bf669a074c023ea9f9a8b40db43.tar.gz firejail-42e2db1275e37bf669a074c023ea9f9a8b40db43.tar.zst firejail-42e2db1275e37bf669a074c023ea9f9a8b40db43.zip |
jaitest - simple sandbox testing utility program
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 77 |
1 files changed, 77 insertions, 0 deletions
@@ -198,7 +198,84 @@ We also keep a list of profile fixes for previous released versions in [etc-fixe | |||
198 | Milestone page: https://github.com/netblue30/firejail/milestone/1 | 198 | Milestone page: https://github.com/netblue30/firejail/milestone/1 |
199 | Release discussion: https://github.com/netblue30/firejail/issues/3696 | 199 | Release discussion: https://github.com/netblue30/firejail/issues/3696 |
200 | 200 | ||
201 | ### jailtest | ||
202 | ````` | ||
203 | JAILTEST(1) JAILTEST man page JAILTEST(1) | ||
204 | |||
205 | NAME | ||
206 | jailtest - Simple utility program to test running sandboxes | ||
207 | |||
208 | SYNOPSIS | ||
209 | sudo jailtest [OPTIONS] [directory] | ||
210 | |||
211 | DESCRIPTION | ||
212 | WORK IN PROGRESS! jailtest attaches itself to all sandboxes started by | ||
213 | the user and performs some basic tests on the sandbox filesystem: | ||
214 | |||
215 | 1. Virtual directories | ||
216 | jailtest extracts a list with the main virtual directories in‐ | ||
217 | stalled by the sandbox. These directories are build by firejail | ||
218 | at startup using --private* and --whitelist commands. | ||
219 | |||
220 | 2. Noexec test | ||
221 | jailtest inserts executable programs in /home/username, /tmp, | ||
222 | and /var/tmp directories and tries to run them form inside the | ||
223 | sandbox, thus testing if the directory is executable or not. | ||
224 | |||
225 | 3. Read access test | ||
226 | jailtest creates test files in the directories specified by the | ||
227 | user and tries to read them from inside the sandbox. | ||
228 | |||
229 | The program is running as root exclusively under sudo. | ||
230 | |||
231 | OPTIONS | ||
232 | --debug | ||
233 | Print debug messages | ||
234 | |||
235 | -?, --help | ||
236 | Print options end exit. | ||
201 | 237 | ||
238 | --version | ||
239 | Print program version and exit. | ||
240 | |||
241 | [directory] | ||
242 | One or more directories in user home to test for read access. | ||
243 | |||
244 | OUTPUT | ||
245 | For each sandbox detected we print the following line: | ||
246 | |||
247 | PID:USER:Sandbox Name:Command | ||
248 | |||
249 | It is followed by relevant sandbox information, such as the virtual di‐ | ||
250 | rectories and various warnings. | ||
251 | |||
252 | EXAMPLE | ||
253 | $ sudo jailtest ~/.ssh ~/.gnupg | ||
254 | 1429:netblue::/usr/bin/firejail /opt/firefox/firefox | ||
255 | Virtual dirs: /home/netblue, /tmp, /var/tmp, /dev, /etc, | ||
256 | 5602:netblue::/usr/bin/firejail /usr/bin/ssh netblue@x.y.z.net | ||
257 | Virtual dirs: /var/tmp, /dev, | ||
258 | Warning: I can read ~/.ssh | ||
259 | 5926:netblue::/usr/bin/firejail /usr/bin/gimp-2.10 | ||
260 | Virtual dirs: /tmp, /var/tmp, /dev, | ||
261 | Warning: I can run programs in /home/netblue | ||
262 | 6394:netblue:libreoffice:/usr/bin/firejail libreoffice | ||
263 | Virtual dirs: /tmp, /var/tmp, /dev, | ||
264 | |||
265 | LICENSE | ||
266 | This program is free software; you can redistribute it and/or modify it | ||
267 | under the terms of the GNU General Public License as published by the | ||
268 | Free Software Foundation; either version 2 of the License, or (at your | ||
269 | option) any later version. | ||
270 | |||
271 | Homepage: https://firejail.wordpress.com | ||
272 | |||
273 | SEE ALSO | ||
274 | firejail(1), firecfg(1), firejail-profile(5), firejail-login(5) fire‐ | ||
275 | jail-users(5) | ||
276 | |||
277 | 0.9.65 Feb 2021 JAILTEST(1) | ||
278 | ````` | ||
202 | 279 | ||
203 | ### Profile Statistics | 280 | ### Profile Statistics |
204 | 281 | ||