diff options
author | netblue30 <netblue30@yahoo.com> | 2016-05-26 09:07:31 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-05-26 09:07:31 -0400 |
commit | 6f56bfe78bbb6970660c06f48b0a39b34c47189f (patch) | |
tree | bbbab8fcb2e0be4ebd6e91f918d8a57b2ee67f96 /etc | |
parent | fixes (diff) | |
parent | Document the restricted-network change (diff) | |
download | firejail-6f56bfe78bbb6970660c06f48b0a39b34c47189f.tar.gz firejail-6f56bfe78bbb6970660c06f48b0a39b34c47189f.tar.zst firejail-6f56bfe78bbb6970660c06f48b0a39b34c47189f.zip |
Merge pull request #537 from KellerFuchs/restricted-netfilter
Make `restricted-network` prevent use of netfilter
Diffstat (limited to 'etc')
-rw-r--r-- | etc/firejail.config | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/etc/firejail.config b/etc/firejail.config index caaeb6792..55d2faa9f 100644 --- a/etc/firejail.config +++ b/etc/firejail.config | |||
@@ -17,8 +17,8 @@ | |||
17 | 17 | ||
18 | # Enable or disable restricted network support, default disabled. If enabled, | 18 | # Enable or disable restricted network support, default disabled. If enabled, |
19 | # networking features should also be enabled (network yes). | 19 | # networking features should also be enabled (network yes). |
20 | # Restricted networking grants access to --interface and --net=ethXXX | 20 | # Restricted networking grants access to --interface, --net=ethXXX and |
21 | # only to root user. Regular users are only allowed --net=none. | 21 | # --netfilter only to root user. Regular users are only allowed --net=none. |
22 | # restricted-network no | 22 | # restricted-network no |
23 | 23 | ||
24 | # Enable or disable seccomp support, default enabled. | 24 | # Enable or disable seccomp support, default enabled. |