run time support to disable overlayfs

author: netblue30 <netblue30@yahoo.com> 2016-08-21 15:01:10 -0400
committer: netblue30 <netblue30@yahoo.com> 2016-08-21 15:01:10 -0400
commit: e6ee65a48c1d17da1cd2058b1e61dc838513a49e (patch)
tree: e7c3522225a3baa19e016d18c44e7f5cf376dc50 /etc/firejail.config
parent: run time support to disable remounting of /proc and /sys (diff)
download: firejail-e6ee65a48c1d17da1cd2058b1e61dc838513a49e.tar.gz
firejail-e6ee65a48c1d17da1cd2058b1e61dc838513a49e.tar.zst
firejail-e6ee65a48c1d17da1cd2058b1e61dc838513a49e.zip
1 files changed, 5 insertions, 3 deletions
diff --git a/etc/firejail.config b/etc/firejail.config
index 1b8d5f4e3..275bba8e2 100644
--- a/etc/firejail.config
+++ b/etc/firejail.config
@@ -3,9 +3,6 @@
 # Most features are enabled by default. Use 'yes' or 'no' as configuration
 # values.
-# Remount /proc and /sys inside the sandbox, default enabled.
-# remount-proc-sys yes
 # Enable or disable bind support, default enabled.
 # bind yes
@@ -24,9 +21,14 @@
 # Enable or disable networking features, default enabled.
 # network yes
+# Enable or disable overlayfs features, default enabled.
+# overlayfs yes
 # Enable --quiet as default every time the sandbox is started. Default disabled.
 # quiet-by-default no
+# Remount /proc and /sys inside the sandbox, default enabled.
+# remount-proc-sys yes
 # Enable or disable restricted network support, default disabled. If enabled,
 # networking features should also be enabled (network yes).
author	netblue30 <netblue30@yahoo.com>	2016-08-21 15:01:10 -0400
committer	netblue30 <netblue30@yahoo.com>	2016-08-21 15:01:10 -0400
commit	e6ee65a48c1d17da1cd2058b1e61dc838513a49e (patch)
tree	e7c3522225a3baa19e016d18c44e7f5cf376dc50 /etc/firejail.config
parent	run time support to disable remounting of /proc and /sys (diff)
download	firejail-e6ee65a48c1d17da1cd2058b1e61dc838513a49e.tar.gz firejail-e6ee65a48c1d17da1cd2058b1e61dc838513a49e.tar.zst firejail-e6ee65a48c1d17da1cd2058b1e61dc838513a49e.zip