diff options
author | smitsohu <smitsohu@gmail.com> | 2019-09-18 17:24:28 +0200 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2019-09-18 17:24:28 +0200 |
commit | 0ecbe8631c9102a4a6eda57e49b42bd14c856386 (patch) | |
tree | 1ef9c51858a0a3f9a360c86a6dba27c8a17f8d17 /etc | |
parent | break out fs_tracefile function (diff) | |
download | firejail-0ecbe8631c9102a4a6eda57e49b42bd14c856386.tar.gz firejail-0ecbe8631c9102a4a6eda57e49b42bd14c856386.tar.zst firejail-0ecbe8631c9102a4a6eda57e49b42bd14c856386.zip |
apparmor: permit writing to trace file
Diffstat (limited to 'etc')
-rw-r--r-- | etc/firejail-default | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/etc/firejail-default b/etc/firejail-default index 1d3664b70..e7831e145 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
@@ -44,6 +44,7 @@ ptrace (read,readby) peer=firejail-default, | |||
44 | ########## | 44 | ########## |
45 | # Whitelist writable paths under /run, /proc and /sys. | 45 | # Whitelist writable paths under /run, /proc and /sys. |
46 | ########## | 46 | ########## |
47 | owner /{,run/firejail/mnt/oroot/}{,var/}run/firejail/mnt/trace w, | ||
47 | owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/** w, | 48 | owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/** w, |
48 | owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/*.slave-socket w, | 49 | owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/*.slave-socket w, |
49 | owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/orcexec.* w, | 50 | owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/orcexec.* w, |