diff options
author | startx2017 <vradu.startx@yandex.com> | 2020-09-03 16:02:14 -0400 |
---|---|---|
committer | startx2017 <vradu.startx@yandex.com> | 2020-09-03 16:02:14 -0400 |
commit | 0421623058694cb15d1b857f67f21e683e2aab55 (patch) | |
tree | 3c7ee0dd2e841e58bcd6d114cf66d53a6c51db95 /src/man/firejail.txt | |
parent | manpages: configuration for tunnel, chroot, private-home (diff) | |
download | firejail-0421623058694cb15d1b857f67f21e683e2aab55.tar.gz firejail-0421623058694cb15d1b857f67f21e683e2aab55.tar.zst firejail-0421623058694cb15d1b857f67f21e683e2aab55.zip |
manpages: configuration for user namespace, x11
Diffstat (limited to 'src/man/firejail.txt')
-rw-r--r-- | src/man/firejail.txt | 13 |
1 files changed, 8 insertions, 5 deletions
diff --git a/src/man/firejail.txt b/src/man/firejail.txt index 5c4947694..8951dd25f 100644 --- a/src/man/firejail.txt +++ b/src/man/firejail.txt | |||
@@ -137,8 +137,9 @@ $ firejail --appimage krita-3.0-x86_64.appimage | |||
137 | .br | 137 | .br |
138 | $ firejail --appimage --private krita-3.0-x86_64.appimage | 138 | $ firejail --appimage --private krita-3.0-x86_64.appimage |
139 | .br | 139 | .br |
140 | #ifdef HAVE_X11 | ||
140 | $ firejail --appimage --net=none --x11 krita-3.0-x86_64.appimage | 141 | $ firejail --appimage --net=none --x11 krita-3.0-x86_64.appimage |
141 | 142 | #endif | |
142 | .TP | 143 | .TP |
143 | \fB\-\-audit | 144 | \fB\-\-audit |
144 | Audit the sandbox, see \fBAUDIT\fR section for more details. | 145 | Audit the sandbox, see \fBAUDIT\fR section for more details. |
@@ -1029,8 +1030,10 @@ $ firejail \-\-list | |||
1029 | .br | 1030 | .br |
1030 | 7056:netblue:torrent:firejail \-\-net=eth0 transmission-gtk | 1031 | 7056:netblue:torrent:firejail \-\-net=eth0 transmission-gtk |
1031 | .br | 1032 | .br |
1033 | #ifdef HAVE_USERNS | ||
1032 | 7064:netblue::firejail \-\-noroot xterm | 1034 | 7064:netblue::firejail \-\-noroot xterm |
1033 | .br | 1035 | .br |
1036 | #endif | ||
1034 | .TP | 1037 | .TP |
1035 | \fB\-\-ls=name|pid dir_or_filename | 1038 | \fB\-\-ls=name|pid dir_or_filename |
1036 | List files in sandbox container, see \fBFILE TRANSFER\fR section for more details. | 1039 | List files in sandbox container, see \fBFILE TRANSFER\fR section for more details. |
@@ -1514,7 +1517,7 @@ Parent pid 8553, child pid 8554 | |||
1514 | Child process initialized | 1517 | Child process initialized |
1515 | .br | 1518 | .br |
1516 | [...] | 1519 | [...] |
1517 | 1520 | #if HAVE_USERNS | |
1518 | .TP | 1521 | .TP |
1519 | \fB\-\-noroot | 1522 | \fB\-\-noroot |
1520 | Install a user namespace with a single user - the current user. | 1523 | Install a user namespace with a single user - the current user. |
@@ -1538,7 +1541,7 @@ $ ping google.com | |||
1538 | ping: icmp open socket: Operation not permitted | 1541 | ping: icmp open socket: Operation not permitted |
1539 | .br | 1542 | .br |
1540 | $ | 1543 | $ |
1541 | 1544 | #endif | |
1542 | .TP | 1545 | .TP |
1543 | \fB\-\-nosound | 1546 | \fB\-\-nosound |
1544 | Disable sound system. | 1547 | Disable sound system. |
@@ -2684,7 +2687,7 @@ Example: | |||
2684 | .br | 2687 | .br |
2685 | $ sudo firejail --writable-var-log | 2688 | $ sudo firejail --writable-var-log |
2686 | 2689 | ||
2687 | 2690 | #ifdef HAVE_X11 | |
2688 | .TP | 2691 | .TP |
2689 | \fB\-\-x11 | 2692 | \fB\-\-x11 |
2690 | Sandbox the application using Xpra, Xephyr, Xvfb or Xorg security extension. | 2693 | Sandbox the application using Xpra, Xephyr, Xvfb or Xorg security extension. |
@@ -2845,7 +2848,7 @@ Example: | |||
2845 | .br | 2848 | .br |
2846 | $ firejail --net=eth0 --x11=xephyr --xephyr-screen=640x480 firefox | 2849 | $ firejail --net=eth0 --x11=xephyr --xephyr-screen=640x480 firefox |
2847 | .br | 2850 | .br |
2848 | 2851 | #endif | |
2849 | #ifdef HAVE_APPARMOR | 2852 | #ifdef HAVE_APPARMOR |
2850 | .SH APPARMOR | 2853 | .SH APPARMOR |
2851 | .TP | 2854 | .TP |