diff options
Diffstat (limited to 'etc/firejail-default')
| -rw-r--r-- | etc/firejail-default | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/etc/firejail-default b/etc/firejail-default index 28103a598..09dc896e6 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
| @@ -98,9 +98,8 @@ deny /**/.snapshots/ rwx, | |||
| 98 | /usr/sbin/** ix, | 98 | /usr/sbin/** ix, |
| 99 | /usr/local/** ix, | 99 | /usr/local/** ix, |
| 100 | /usr/lib/** ix, | 100 | /usr/lib/** ix, |
| 101 | /usr/lib64/** ix, | ||
| 101 | /usr/games/** ix, | 102 | /usr/games/** ix, |
| 102 | /opt/ r, | ||
| 103 | /opt/** r, | ||
| 104 | /opt/** ix, | 103 | /opt/** ix, |
| 105 | #/home/** ix, | 104 | #/home/** ix, |
| 106 | /run/firejail/mnt/oroot/lib/** ix, | 105 | /run/firejail/mnt/oroot/lib/** ix, |
| @@ -111,9 +110,8 @@ deny /**/.snapshots/ rwx, | |||
| 111 | /run/firejail/mnt/oroot/usr/sbin/** ix, | 110 | /run/firejail/mnt/oroot/usr/sbin/** ix, |
| 112 | /run/firejail/mnt/oroot/usr/local/** ix, | 111 | /run/firejail/mnt/oroot/usr/local/** ix, |
| 113 | /run/firejail/mnt/oroot/usr/lib/** ix, | 112 | /run/firejail/mnt/oroot/usr/lib/** ix, |
| 113 | /run/firejail/mnt/oroot/usr/lib64/** ix, | ||
| 114 | /run/firejail/mnt/oroot/usr/games/** ix, | 114 | /run/firejail/mnt/oroot/usr/games/** ix, |
| 115 | /run/firejail/mnt/oroot/opt/ r, | ||
| 116 | /run/firejail/mnt/oroot/opt/** r, | ||
| 117 | /run/firejail/mnt/oroot/opt/** ix, | 115 | /run/firejail/mnt/oroot/opt/** ix, |
| 118 | 116 | ||
| 119 | ########## | 117 | ########## |
| @@ -129,6 +127,8 @@ network inet6, | |||
| 129 | network unix, | 127 | network unix, |
| 130 | network netlink, | 128 | network netlink, |
| 131 | network raw, | 129 | network raw, |
| 130 | # needed for wireshark | ||
| 131 | network packet, | ||
| 132 | 132 | ||
| 133 | ########## | 133 | ########## |
| 134 | # There is no equivalent in Firejail for filtering signals. | 134 | # There is no equivalent in Firejail for filtering signals. |