Apparmor: Revert /proc changes

author: Vincent43 <31109921+Vincent43@users.noreply.github.com> 2018-01-23 09:09:59 +0000
committer: GitHub <noreply@github.com> 2018-01-23 09:09:59 +0000
commit: b3d310df7f22602ab2beb2435a03aba194e650f7 (patch)
tree: 5ddae7ffb1651f8ee694fe5100d949a0d7c8a31f /etc/firejail-default
parent: Apparmor: fix kodi plugins (diff)
download: firejail-b3d310df7f22602ab2beb2435a03aba194e650f7.tar.gz
firejail-b3d310df7f22602ab2beb2435a03aba194e650f7.tar.zst
firejail-b3d310df7f22602ab2beb2435a03aba194e650f7.zip
1 files changed, 16 insertions, 16 deletions
diff --git a/etc/firejail-default b/etc/firejail-default
index b5d5a2738..e5010eaab 100644
--- a/etc/firejail-default
+++ b/etc/firejail-default
@@ -61,23 +61,23 @@ owner /{run,dev}/shm/** rmwk,
 /sys/devices/ r,
 /sys/devices/** r,
-owner /proc/@{PID}/ r,
+/proc/@{PID}/ r,
-owner /proc/@{PID}/fd/ r,
+/proc/@{PID}/fd/ r,
-owner /proc/@{PID}/task/ r,
+/proc/@{PID}/task/ r,
-owner /proc/@{PID}/cmdline r,
+/proc/@{PID}/cmdline r,
-owner /proc/@{PID}/comm r,
+/proc/@{PID}/comm r,
-owner /proc/@{PID}/stat r,
+/proc/@{PID}/stat r,
-owner /proc/@{PID}/statm r,
+/proc/@{PID}/statm r,
-owner /proc/@{PID}/status r,
+/proc/@{PID}/status r,
-owner /proc/@{PID}/task/@{PID}/stat r,
+/proc/@{PID}/task/@{PID}/stat r,
-owner /proc/@{PID}/maps r,
+/proc/@{PID}/maps r,
-owner /proc/@{PID}/mounts r,
+/proc/@{PID}/mounts r,
-owner /proc/@{PID}/mountinfo r,
+/proc/@{PID}/mountinfo r,
-owner /proc/@{PID}/oom_score_adj r,
+/proc/@{PID}/oom_score_adj r,
-owner /proc/@{PID}/auxv r,
+/proc/@{PID}/auxv r,
 /proc/@{PID}/net/dev r,
-owner /proc/@{PID}/loginuid r,
+/proc/@{PID}/loginuid r,
-owner /proc/@{PID}/environ r,
+/proc/@{PID}/environ r,
 ##########
 # Allow running programs only from well-known system directories. If you need
author	Vincent43 <31109921+Vincent43@users.noreply.github.com>	2018-01-23 09:09:59 +0000
committer	GitHub <noreply@github.com>	2018-01-23 09:09:59 +0000
commit	b3d310df7f22602ab2beb2435a03aba194e650f7 (patch)
tree	5ddae7ffb1651f8ee694fe5100d949a0d7c8a31f /etc/firejail-default
parent	Apparmor: fix kodi plugins (diff)
download	firejail-b3d310df7f22602ab2beb2435a03aba194e650f7.tar.gz firejail-b3d310df7f22602ab2beb2435a03aba194e650f7.tar.zst firejail-b3d310df7f22602ab2beb2435a03aba194e650f7.zip

diff --git a/etc/firejail-default b/etc/firejail-default index b5d5a2738..e5010eaab 100644 --- a/etc/firejail-default +++ b/etc/firejail-default
@@ -61,23 +61,23 @@ owner /{run,dev}/shm/** rmwk,
61	/sys/devices/ r,	61	/sys/devices/ r,
62	/sys/devices/** r,	62	/sys/devices/** r,
63		63
64	owner /proc/@{PID}/ r,	64	/proc/@{PID}/ r,
65	owner /proc/@{PID}/fd/ r,	65	/proc/@{PID}/fd/ r,
66	owner /proc/@{PID}/task/ r,	66	/proc/@{PID}/task/ r,
67	owner /proc/@{PID}/cmdline r,	67	/proc/@{PID}/cmdline r,
68	owner /proc/@{PID}/comm r,	68	/proc/@{PID}/comm r,
69	owner /proc/@{PID}/stat r,	69	/proc/@{PID}/stat r,
70	owner /proc/@{PID}/statm r,	70	/proc/@{PID}/statm r,
71	owner /proc/@{PID}/status r,	71	/proc/@{PID}/status r,
72	owner /proc/@{PID}/task/@{PID}/stat r,	72	/proc/@{PID}/task/@{PID}/stat r,
73	owner /proc/@{PID}/maps r,	73	/proc/@{PID}/maps r,
74	owner /proc/@{PID}/mounts r,	74	/proc/@{PID}/mounts r,
75	owner /proc/@{PID}/mountinfo r,	75	/proc/@{PID}/mountinfo r,
76	owner /proc/@{PID}/oom_score_adj r,	76	/proc/@{PID}/oom_score_adj r,
77	owner /proc/@{PID}/auxv r,	77	/proc/@{PID}/auxv r,
78	/proc/@{PID}/net/dev r,	78	/proc/@{PID}/net/dev r,
79	owner /proc/@{PID}/loginuid r,	79	/proc/@{PID}/loginuid r,
80	owner /proc/@{PID}/environ r,	80	/proc/@{PID}/environ r,
81		81
82	##########	82	##########
83	# Allow running programs only from well-known system directories. If you need	83	# Allow running programs only from well-known system directories. If you need