diff options
| -rw-r--r-- | src/firejail/join.c | 9 |
1 files changed, 5 insertions, 4 deletions
diff --git a/src/firejail/join.c b/src/firejail/join.c index 948c7ef71..414b899ce 100644 --- a/src/firejail/join.c +++ b/src/firejail/join.c | |||
| @@ -309,14 +309,15 @@ void join(pid_t pid, int argc, char **argv, int index) { | |||
| 309 | printf("Joining user namespace\n"); | 309 | printf("Joining user namespace\n"); |
| 310 | if (join_namespace(1, "user")) | 310 | if (join_namespace(1, "user")) |
| 311 | exit(1); | 311 | exit(1); |
| 312 | |||
| 313 | // user namespace resets capabilities | ||
| 314 | // set caps filter | ||
| 315 | if (apply_caps == 1) // not available for uid 0 | ||
| 316 | caps_set(caps); | ||
| 312 | } | 317 | } |
| 313 | else | 318 | else |
| 314 | drop_privs(arg_nogroups); // nogroups not available for uid 0 | 319 | drop_privs(arg_nogroups); // nogroups not available for uid 0 |
| 315 | 320 | ||
| 316 | // user namespace resets capabilities | ||
| 317 | // set caps filter | ||
| 318 | if (apply_caps == 1) // not available for uid 0 | ||
| 319 | caps_set(caps); | ||
| 320 | 321 | ||
| 321 | // set prompt color to green | 322 | // set prompt color to green |
| 322 | char *prompt = getenv("FIREJAIL_PROMPT"); | 323 | char *prompt = getenv("FIREJAIL_PROMPT"); |