diff options
author | netblue30 <netblue30@yahoo.com> | 2015-12-03 11:57:07 -0500 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2015-12-03 11:57:07 -0500 |
commit | fa88b858da3a412c0111185fc0576fc9ad3c4be3 (patch) | |
tree | f35513b863ddd2d0c05b7678f52d63cd9e175804 /src/man | |
parent | --tracelog (diff) | |
download | firejail-fa88b858da3a412c0111185fc0576fc9ad3c4be3.tar.gz firejail-fa88b858da3a412c0111185fc0576fc9ad3c4be3.tar.zst firejail-fa88b858da3a412c0111185fc0576fc9ad3c4be3.zip |
--tracelog
Diffstat (limited to 'src/man')
-rw-r--r-- | src/man/firejail.txt | 23 |
1 files changed, 22 insertions, 1 deletions
diff --git a/src/man/firejail.txt b/src/man/firejail.txt index 28f75d023..62225c407 100644 --- a/src/man/firejail.txt +++ b/src/man/firejail.txt | |||
@@ -1297,7 +1297,28 @@ Child process initialized | |||
1297 | parent is shutting down, bye... | 1297 | parent is shutting down, bye... |
1298 | .TP | 1298 | .TP |
1299 | \fB\-\-tracelog | 1299 | \fB\-\-tracelog |
1300 | Add a log message in syslog for every access to blacklisted files or directories. | 1300 | This option enables auditing blacklisted files and directories. A message |
1301 | is sent to syslog in case the file or the directory is accessed. | ||
1302 | .br | ||
1303 | |||
1304 | .br | ||
1305 | Example: | ||
1306 | .br | ||
1307 | $ firejail --tracelog firefox | ||
1308 | .br | ||
1309 | |||
1310 | .br | ||
1311 | Sample messages: | ||
1312 | .br | ||
1313 | $ sudo tail -f /var/log/syslog | ||
1314 | .br | ||
1315 | [...] | ||
1316 | .br | ||
1317 | Dec 3 11:43:25 debian firejail[70]: blacklist violation - sandbox 26370, exe firefox, syscall open64, path /etc/shadow | ||
1318 | .br | ||
1319 | Dec 3 11:46:17 debian firejail[70]: blacklist violation - sandbox 26370, exe firefox, syscall opendir, path /boot | ||
1320 | .br | ||
1321 | [...] | ||
1301 | .TP | 1322 | .TP |
1302 | \fB\-\-tree | 1323 | \fB\-\-tree |
1303 | Print a tree of all sandboxed processes, see MONITORING section for more details. | 1324 | Print a tree of all sandboxed processes, see MONITORING section for more details. |