--read-write option

author: netblue30 <netblue30@yahoo.com> 2016-04-21 10:47:52 -0400
committer: netblue30 <netblue30@yahoo.com> 2016-04-21 10:47:52 -0400
commit: e547b142597568da678c54da8b5b4164fb3fee86 (patch)
tree: 6a738b916c330c85216d0cddcedc971150cb98b2 /src/man/firejail-profile.txt
parent: added --read-write option (diff)
download: firejail-e547b142597568da678c54da8b5b4164fb3fee86.tar.gz
firejail-e547b142597568da678c54da8b5b4164fb3fee86.tar.zst
firejail-e547b142597568da678c54da8b5b4164fb3fee86.zip
1 files changed, 12 insertions, 9 deletions
diff --git a/src/man/firejail-profile.txt b/src/man/firejail-profile.txt
index 8ad2eefad..19063f5ef 100644
--- a/src/man/firejail-profile.txt
+++ b/src/man/firejail-profile.txt
@@ -122,12 +122,6 @@ blacklist ${PATH}/ifconfig
 blacklist ${HOME}/.ssh
 .TP
-\fBread-only file_or_directory
-Make directory or file read-only.
-.TP
-\fBtmpfs directory
-Mount an empty tmpfs filesystem on top of directory. This option is available only when running the sandbox as root.
-.TP
 \fBbind directory1,directory2
 Mount-bind directory1 on top of directory2. This option is only available when running as root.
 .TP
@@ -182,6 +176,18 @@ All modifications are discarded when the sandbox is closed.
 \fBprivate-tmp
 Mount an empty temporary filesystem on top of /tmp directory.
 .TP
+\fBread-only file_or_directory
+Make directory or file read-only.
+.TP
+\fBread-write file_or_directory
+Make directory or file read-write.
+.TP
+\fBtmpfs directory
+Mount an empty tmpfs filesystem on top of directory. This option is available only when running the sandbox as root.
+.TP
+\fBtracelog
+Blacklist violations logged to syslog.
+.TP
 \fBwhitelist file_or_directory
 Build a new user home in a temporary filesystem, and mount-bind file_or_directory.
 The modifications to file_or_directory are persistent, everything else is discarded
@@ -194,9 +200,6 @@ when running the sandbox as root user.
 \fBwritable-var
 Mount /var directory read-write. This option is  available  only
 when running the sandbox as root user.
-.TP
-\fBtracelog
-Blacklist violations logged to syslog.
 .SH Security filters
 The following security filters are currently implemented:
author	netblue30 <netblue30@yahoo.com>	2016-04-21 10:47:52 -0400
committer	netblue30 <netblue30@yahoo.com>	2016-04-21 10:47:52 -0400
commit	e547b142597568da678c54da8b5b4164fb3fee86 (patch)
tree	6a738b916c330c85216d0cddcedc971150cb98b2 /src/man/firejail-profile.txt
parent	added --read-write option (diff)
download	firejail-e547b142597568da678c54da8b5b4164fb3fee86.tar.gz firejail-e547b142597568da678c54da8b5b4164fb3fee86.tar.zst firejail-e547b142597568da678c54da8b5b4164fb3fee86.zip

diff --git a/src/man/firejail-profile.txt b/src/man/firejail-profile.txt index 8ad2eefad..19063f5ef 100644 --- a/src/man/firejail-profile.txt +++ b/src/man/firejail-profile.txt
@@ -122,12 +122,6 @@ blacklist ${PATH}/ifconfig
122	blacklist ${HOME}/.ssh	122	blacklist ${HOME}/.ssh
123		123
124	.TP	124	.TP
125	\fBread-only file_or_directory
126	Make directory or file read-only.
127	.TP
128	\fBtmpfs directory
129	Mount an empty tmpfs filesystem on top of directory. This option is available only when running the sandbox as root.
130	.TP
131	\fBbind directory1,directory2	125	\fBbind directory1,directory2
132	Mount-bind directory1 on top of directory2. This option is only available when running as root.	126	Mount-bind directory1 on top of directory2. This option is only available when running as root.
133	.TP	127	.TP
@@ -182,6 +176,18 @@ All modifications are discarded when the sandbox is closed.
182	\fBprivate-tmp	176	\fBprivate-tmp
183	Mount an empty temporary filesystem on top of /tmp directory.	177	Mount an empty temporary filesystem on top of /tmp directory.
184	.TP	178	.TP
		179	\fBread-only file_or_directory
		180	Make directory or file read-only.
		181	.TP
		182	\fBread-write file_or_directory
		183	Make directory or file read-write.
		184	.TP
		185	\fBtmpfs directory
		186	Mount an empty tmpfs filesystem on top of directory. This option is available only when running the sandbox as root.
		187	.TP
		188	\fBtracelog
		189	Blacklist violations logged to syslog.
		190	.TP
185	\fBwhitelist file_or_directory	191	\fBwhitelist file_or_directory
186	Build a new user home in a temporary filesystem, and mount-bind file_or_directory.	192	Build a new user home in a temporary filesystem, and mount-bind file_or_directory.
187	The modifications to file_or_directory are persistent, everything else is discarded	193	The modifications to file_or_directory are persistent, everything else is discarded
@@ -194,9 +200,6 @@ when running the sandbox as root user.
194	\fBwritable-var	200	\fBwritable-var
195	Mount /var directory read-write. This option is available only	201	Mount /var directory read-write. This option is available only
196	when running the sandbox as root user.	202	when running the sandbox as root user.
197	.TP
198	\fBtracelog
199	Blacklist violations logged to syslog.
200	.SH Security filters	203	.SH Security filters
201	The following security filters are currently implemented:	204	The following security filters are currently implemented:
202		205