diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/firejail-default | 20 |
1 files changed, 6 insertions, 14 deletions
diff --git a/etc/firejail-default b/etc/firejail-default index 859f8683a..f96149bb7 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
@@ -32,20 +32,12 @@ profile firejail-default flags=(attach_disconnected,mediate_deleted) { | |||
32 | /run/firejail/mnt/oroot/{,var/}run/ r, | 32 | /run/firejail/mnt/oroot/{,var/}run/ r, |
33 | /run/firejail/mnt/oroot/{,var/}run/** r, | 33 | /run/firejail/mnt/oroot/{,var/}run/** r, |
34 | 34 | ||
35 | owner /{,var/}run/user/**/dconf/ rw, | 35 | owner /{,var/}run/user/[0-9]*/** rw, |
36 | owner /{,var/}run/user/**/dconf/user rw, | 36 | owner /{,var/}run/user/[0-9]*/*.slave-socket rwl, |
37 | owner /{,var/}run/user/**/pulse/ rw, | 37 | owner /{,var/}run/user/[0-9]*/orcexec.* rwkm, |
38 | owner /{,var/}run/user/**/pulse/** rw, | 38 | owner /run/firejail/mnt/oroot/{,var/}run/user/[0-9]*/** rw, |
39 | owner /{,var/}run/user/**/*.slave-socket rwl, | 39 | owner /run/firejail/mnt/oroot/{,var/}run/user/[0-9]*/*.slave-socket rwl, |
40 | owner /{,var/}run/user/**/#@{PID} rw, | 40 | owner /run/firejail/mnt/oroot/{,var/}run/user/[0-9]*/orcexec.* rwkm, |
41 | owner /{,var/}run/user/**/orcexec.* rwkm, | ||
42 | owner /run/firejail/mnt/oroot/{,var/}run/user/**/dconf/ rw, | ||
43 | owner /run/firejail/mnt/oroot/{,var/}run/user/**/dconf/user rw, | ||
44 | owner /run/firejail/mnt/oroot/{,var/}run/user/**/pulse/ rw, | ||
45 | owner /run/firejail/mnt/oroot/{,var/}run/user/**/pulse/** rw, | ||
46 | owner /run/firejail/mnt/oroot/{,var/}run/user/**/*.slave-socket rwl, | ||
47 | owner /run/firejail/mnt/oroot/{,var/}run/user/**/#@{PID} rw, | ||
48 | owner /run/firejail/mnt/oroot/{,var/}run/user/**/orcexec.* rwkm, | ||
49 | 41 | ||
50 | /{,var/}run/firejail/mnt/fslogger r, | 42 | /{,var/}run/firejail/mnt/fslogger r, |
51 | /{,var/}run/firejail/appimage r, | 43 | /{,var/}run/firejail/appimage r, |