diff options
author | netblue30 <netblue30@yahoo.com> | 2015-11-22 13:15:13 -0500 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2015-11-22 13:15:13 -0500 |
commit | a8d758ba9e7314de9208e4b7d4a5307d1b4fefd0 (patch) | |
tree | 4002cad80b79157ef2c300ca8f12625a5b0b8b17 /todo | |
parent | fixes (diff) | |
download | firejail-a8d758ba9e7314de9208e4b7d4a5307d1b4fefd0.tar.gz firejail-a8d758ba9e7314de9208e4b7d4a5307d1b4fefd0.tar.zst firejail-a8d758ba9e7314de9208e4b7d4a5307d1b4fefd0.zip |
feature test
Diffstat (limited to 'todo')
-rw-r--r-- | todo | 21 |
1 files changed, 20 insertions, 1 deletions
@@ -1,4 +1,4 @@ | |||
1 | 1. Deal with .purple directory. It holds the confiig files for pidgin | 1 | 1. Getting "Warning: failed to unmount /sys" on --chroot and --overlay |
2 | 2 | ||
3 | 2. Startup warnings on Arch Linux: | 3 | 2. Startup warnings on Arch Linux: |
4 | 4 | ||
@@ -75,3 +75,22 @@ socat ABSTRACT-LISTEN:/tmp/dbus-awBoQTCc,fork UNIX-CONNECT:/tmp/mysock | |||
75 | 75 | ||
76 | 12. do not allow symlinks for --bind | 76 | 12. do not allow symlinks for --bind |
77 | 77 | ||
78 | 13. While using --net=eth0 assign the name of the interface inside the sandbox as eth0 | ||
79 | |||
80 | 14. check chroot does not allow on symlinks | ||
81 | 15. do not attempt to mount /sys if unmount fails | ||
82 | |||
83 | $ firejail --noprofile --chroot=/tmp/chroot | ||
84 | Parent pid 13915, child pid 13916 | ||
85 | Warning: cannot mount tmpfs on top of /var/log | ||
86 | Warning: cannot find /var/run/utmp | ||
87 | Warning: cannot find home directory | ||
88 | Dropping all Linux capabilities and enforcing default seccomp filter | ||
89 | Warning: failed to unmount /sys | ||
90 | Warning: failed to mount /sys | ||
91 | Warning: cannot disable /sys/firmware directory | ||
92 | Warning: cannot disable /sys/hypervisor directory | ||
93 | Warning: cannot disable /sys/fs directory | ||
94 | Warning: cannot disable /sys/module directory | ||
95 | Warning: cannot disable /sys/power directory | ||
96 | Child process initialized | ||