diff options
author | Vincent43 <31109921+Vincent43@users.noreply.github.com> | 2019-06-15 12:05:48 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-06-15 12:05:48 +0000 |
commit | 867c2bcbfbce38e917191023e65bae6102a81430 (patch) | |
tree | 4d4e8fa14938965b1a327310ab2b8ee93e3a35ef /etc | |
parent | Merge pull request #2766 from rusty-snake/fix-all-private-bin_etc-lines (diff) | |
download | firejail-867c2bcbfbce38e917191023e65bae6102a81430.tar.gz firejail-867c2bcbfbce38e917191023e65bae6102a81430.tar.zst firejail-867c2bcbfbce38e917191023e65bae6102a81430.zip |
chromium: disable nodbus
Unfortunately nodbus prevents access to site passwords if they are stored in GNOME Keyring[1]. According to docs chromium can store password in 3 different ways:
GNOME Keyring
KWallet 4
plain text
As KWallet storage may be broken in a same way, using nodbus will force chromium to store passwords in plain text which isn't best option for security and for firejail default.
[1] https://wiki.gnome.org/Projects/GnomeKeyring
[2] https://chromium.googlesource.com/chromium/src.git/+/master/docs/linux_password_storage.md
Diffstat (limited to 'etc')
-rw-r--r-- | etc/chromium-common.profile | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/etc/chromium-common.profile b/etc/chromium-common.profile index 63983d93b..b64fc820a 100644 --- a/etc/chromium-common.profile +++ b/etc/chromium-common.profile | |||
@@ -29,8 +29,7 @@ include whitelist-var-common.inc | |||
29 | apparmor | 29 | apparmor |
30 | caps.keep sys_chroot,sys_admin | 30 | caps.keep sys_chroot,sys_admin |
31 | netfilter | 31 | netfilter |
32 | # Breaks Gnome connector - disable if you use that | 32 | # nodbus - prevents access to passwords saved in GNOME Keyring, also breaks Gnome connector |
33 | nodbus | ||
34 | nodvd | 33 | nodvd |
35 | nogroups | 34 | nogroups |
36 | notv | 35 | notv |