diff options
| author |  Vladimir Schowalter <VladimirSchowalter20@users.noreply.github.com> | 2017-08-02 00:08:10 +0100 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2017-08-02 00:08:10 +0100 |
| commit | eea48fa9d8a2be57ddccdbd5572e2fc22277cda9 (patch) | |
| tree | a3d36e75974789d49ae89f82bb856ab5f7f4d1f1 /etc | |
| parent | compile cleanup (diff) | |
| download | firejail-eea48fa9d8a2be57ddccdbd5572e2fc22277cda9.tar.gz firejail-eea48fa9d8a2be57ddccdbd5572e2fc22277cda9.tar.zst firejail-eea48fa9d8a2be57ddccdbd5572e2fc22277cda9.zip | |
Add some /proc dirs to firejail apparmor profile
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/firejail-default | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/etc/firejail-default b/etc/firejail-default index 7fd1b1ad7..092fcbbcc 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
| @@ -71,6 +71,10 @@ profile firejail-default flags=(attach_disconnected,mediate_deleted) { | |||
| 71 | /proc/@{PID}/mounts r, | 71 | /proc/@{PID}/mounts r, |
| 72 | /proc/@{PID}/mountinfo r, | 72 | /proc/@{PID}/mountinfo r, |
| 73 | /proc/@{PID}/oom_score_adj r, | 73 | /proc/@{PID}/oom_score_adj r, |
| 74 | /proc/@{PID}/auxv r, | ||
| 75 | /proc/@{PID}/net/dev r, | ||
| 76 | /proc/@{PID}/loginuid r, | ||
| 77 | /proc/@{PID}/environ r, | ||
| 74 | 78 | ||
| 75 | ########## | 79 | ########## |
| 76 | # Allow running programs only from well-known system directories. If you need | 80 | # Allow running programs only from well-known system directories. If you need |