diff options
author | Vladimir Schowalter <VladimirSchowalter20@users.noreply.github.com> | 2017-08-02 00:08:10 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2017-08-02 00:08:10 +0100 |
commit | eea48fa9d8a2be57ddccdbd5572e2fc22277cda9 (patch) | |
tree | a3d36e75974789d49ae89f82bb856ab5f7f4d1f1 /etc | |
parent | compile cleanup (diff) | |
download | firejail-eea48fa9d8a2be57ddccdbd5572e2fc22277cda9.tar.gz firejail-eea48fa9d8a2be57ddccdbd5572e2fc22277cda9.tar.zst firejail-eea48fa9d8a2be57ddccdbd5572e2fc22277cda9.zip |
Add some /proc dirs to firejail apparmor profile
Diffstat (limited to 'etc')
-rw-r--r-- | etc/firejail-default | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/etc/firejail-default b/etc/firejail-default index 7fd1b1ad7..092fcbbcc 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
@@ -71,6 +71,10 @@ profile firejail-default flags=(attach_disconnected,mediate_deleted) { | |||
71 | /proc/@{PID}/mounts r, | 71 | /proc/@{PID}/mounts r, |
72 | /proc/@{PID}/mountinfo r, | 72 | /proc/@{PID}/mountinfo r, |
73 | /proc/@{PID}/oom_score_adj r, | 73 | /proc/@{PID}/oom_score_adj r, |
74 | /proc/@{PID}/auxv r, | ||
75 | /proc/@{PID}/net/dev r, | ||
76 | /proc/@{PID}/loginuid r, | ||
77 | /proc/@{PID}/environ r, | ||
74 | 78 | ||
75 | ########## | 79 | ########## |
76 | # Allow running programs only from well-known system directories. If you need | 80 | # Allow running programs only from well-known system directories. If you need |