diff options
author | ಚಿರಾಗ್ ನಟರಾಜ್ <chiraag.nataraj@gmail.com> | 2018-07-11 11:28:05 -0400 |
---|---|---|
committer | ಚಿರಾಗ್ ನಟರಾಜ್ <chiraag.nataraj@gmail.com> | 2018-07-11 11:28:05 -0400 |
commit | 968679691c3d2920f65f6d748389a42f0de3471c (patch) | |
tree | 96098e24aad8a56dd15ad45544492f6726233b43 /etc | |
parent | tunneling support - tap interface in --net option (diff) | |
download | firejail-968679691c3d2920f65f6d748389a42f0de3471c.tar.gz firejail-968679691c3d2920f65f6d748389a42f0de3471c.tar.zst firejail-968679691c3d2920f65f6d748389a42f0de3471c.zip |
Add warning that nodbus + blacklist of python3 breaks Gnome connector (see #2026)
Diffstat (limited to 'etc')
-rw-r--r-- | etc/chromium-common.profile | 1 | ||||
-rw-r--r-- | etc/disable-interpreters.inc | 2 | ||||
-rw-r--r-- | etc/firefox-common.profile | 1 |
3 files changed, 4 insertions, 0 deletions
diff --git a/etc/chromium-common.profile b/etc/chromium-common.profile index c8132cd0f..fc3df86db 100644 --- a/etc/chromium-common.profile +++ b/etc/chromium-common.profile | |||
@@ -22,6 +22,7 @@ include /etc/firejail/whitelist-var-common.inc | |||
22 | apparmor | 22 | apparmor |
23 | caps.keep sys_chroot,sys_admin | 23 | caps.keep sys_chroot,sys_admin |
24 | netfilter | 24 | netfilter |
25 | # Breaks Gnome connector - disable if you use that | ||
25 | nodbus | 26 | nodbus |
26 | nodvd | 27 | nodvd |
27 | nogroups | 28 | nogroups |
diff --git a/etc/disable-interpreters.inc b/etc/disable-interpreters.inc index 18120e95d..0e0caade1 100644 --- a/etc/disable-interpreters.inc +++ b/etc/disable-interpreters.inc | |||
@@ -39,6 +39,8 @@ blacklist /usr/lib/python2* | |||
39 | blacklist /usr/local/lib/python2* | 39 | blacklist /usr/local/lib/python2* |
40 | blacklist /usr/share/python2* | 40 | blacklist /usr/share/python2* |
41 | 41 | ||
42 | # You will want to add noblacklist for python3 stuff in the firefox and/or chromium profiles if you use the Gnome connector (see Issue #2026) | ||
43 | |||
42 | # Python 3 | 44 | # Python 3 |
43 | blacklist ${PATH}/python3* | 45 | blacklist ${PATH}/python3* |
44 | blacklist /usr/include/python3* | 46 | blacklist /usr/include/python3* |
diff --git a/etc/firefox-common.profile b/etc/firefox-common.profile index 818f24e7e..8b2022853 100644 --- a/etc/firefox-common.profile +++ b/etc/firefox-common.profile | |||
@@ -27,6 +27,7 @@ caps.drop all | |||
27 | # machine-id breaks pulse audio; it should work fine in setups where sound is not required | 27 | # machine-id breaks pulse audio; it should work fine in setups where sound is not required |
28 | #machine-id | 28 | #machine-id |
29 | netfilter | 29 | netfilter |
30 | # Breaks Gnome connector - disable if you use that | ||
30 | nodbus | 31 | nodbus |
31 | nodvd | 32 | nodvd |
32 | nogroups | 33 | nogroups |