diff options
| author |  Vincent43 <31109921+Vincent43@users.noreply.github.com> | 2019-07-14 14:37:58 +0200 |
|---|---|---|
| committer | Vincent43 <31109921+Vincent43@users.noreply.github.com> | 2019-07-14 14:37:58 +0200 |
| commit | 2eca1252e3491f098f036483855e3402882ebc54 (patch) | |
| tree | 25cd65849adbc5067173b9342ae1cfc5b812f494 /etc/firejail-default | |
| parent | homedirs: turn "informational error" into warning (diff) | |
| download | firejail-2eca1252e3491f098f036483855e3402882ebc54.tar.gz firejail-2eca1252e3491f098f036483855e3402882ebc54.tar.zst firejail-2eca1252e3491f098f036483855e3402882ebc54.zip | |
apparmor: allow writing to /proc/@{PID}/comm
This is needed by various electron apps, see:
https://github.com/netblue30/firejail/issues/2538
https://github.com/netblue30/firejail/issues/2854
Diffstat (limited to 'etc/firejail-default')
| -rw-r--r-- | etc/firejail-default | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/etc/firejail-default b/etc/firejail-default index 02a241c34..7735f2f80 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
| @@ -66,6 +66,9 @@ owner /{,var/}run/media/** w, | |||
| 66 | # Needed for firefox sandbox | 66 | # Needed for firefox sandbox |
| 67 | /proc/[0-9]*/{uid_map,gid_map,setgroups} w, | 67 | /proc/[0-9]*/{uid_map,gid_map,setgroups} w, |
| 68 | 68 | ||
| 69 | # Needed for electron apps | ||
| 70 | /proc/@{PID}/comm w, | ||
| 71 | |||
| 69 | # Silence noise | 72 | # Silence noise |
| 70 | deny /proc/@{PID}/oom_adj w, | 73 | deny /proc/@{PID}/oom_adj w, |
| 71 | deny /proc/@{PID}/oom_score_adj w, | 74 | deny /proc/@{PID}/oom_score_adj w, |