2 files changed, 12 insertions, 4 deletions

diff --git a/etc/disable-common.inc b/etc/disable-common.inc
index f04702618..e7974f02d 100644
--- a/etc/disable-common.inc
+++ b/etc/disable-common.inc
@@ -119,7 +119,3 @@ read-only ${HOME}/.xmonad
 # The user ~/bin directory can override commands such as ls
 read-only ${HOME}/bin
 
-# syslog
-blacklist /dev/kmsg
-blacklist /proc/kmsg
-
diff --git a/src/firejail/fs.c b/src/firejail/fs.c
index 50e55f868..f4c448024 100644
--- a/src/firejail/fs.c
+++ b/src/firejail/fs.c
@@ -604,6 +604,18 @@ void fs_proc_sys_dev_boot(void) {
         if (stat("/dev/port", &s) == 0) {
                 disable_file(BLACKLIST_FILE, "/dev/port");
         }
+        
+        if (getuid() != 0) {
+                // disable /dev/kmsg
+                if (stat("/dev/kmsg", &s) == 0) {
+                        disable_file(BLACKLIST_FILE, "/dev/kmsg");
+                }
+                
+                // disable /proc/kmsg
+                if (stat("/proc/kmsg", &s) == 0) {
+                        disable_file(BLACKLIST_FILE, "/proc/kmsg");
+                }
+        }
 }
 
 // disable firejail configuration in /etc/firejail and in ~/.config/firejail