diff options
Diffstat (limited to 'src/man/firejail-profile.txt')
-rw-r--r-- | src/man/firejail-profile.txt | 21 |
1 files changed, 12 insertions, 9 deletions
diff --git a/src/man/firejail-profile.txt b/src/man/firejail-profile.txt index 8ad2eefad..19063f5ef 100644 --- a/src/man/firejail-profile.txt +++ b/src/man/firejail-profile.txt | |||
@@ -122,12 +122,6 @@ blacklist ${PATH}/ifconfig | |||
122 | blacklist ${HOME}/.ssh | 122 | blacklist ${HOME}/.ssh |
123 | 123 | ||
124 | .TP | 124 | .TP |
125 | \fBread-only file_or_directory | ||
126 | Make directory or file read-only. | ||
127 | .TP | ||
128 | \fBtmpfs directory | ||
129 | Mount an empty tmpfs filesystem on top of directory. This option is available only when running the sandbox as root. | ||
130 | .TP | ||
131 | \fBbind directory1,directory2 | 125 | \fBbind directory1,directory2 |
132 | Mount-bind directory1 on top of directory2. This option is only available when running as root. | 126 | Mount-bind directory1 on top of directory2. This option is only available when running as root. |
133 | .TP | 127 | .TP |
@@ -182,6 +176,18 @@ All modifications are discarded when the sandbox is closed. | |||
182 | \fBprivate-tmp | 176 | \fBprivate-tmp |
183 | Mount an empty temporary filesystem on top of /tmp directory. | 177 | Mount an empty temporary filesystem on top of /tmp directory. |
184 | .TP | 178 | .TP |
179 | \fBread-only file_or_directory | ||
180 | Make directory or file read-only. | ||
181 | .TP | ||
182 | \fBread-write file_or_directory | ||
183 | Make directory or file read-write. | ||
184 | .TP | ||
185 | \fBtmpfs directory | ||
186 | Mount an empty tmpfs filesystem on top of directory. This option is available only when running the sandbox as root. | ||
187 | .TP | ||
188 | \fBtracelog | ||
189 | Blacklist violations logged to syslog. | ||
190 | .TP | ||
185 | \fBwhitelist file_or_directory | 191 | \fBwhitelist file_or_directory |
186 | Build a new user home in a temporary filesystem, and mount-bind file_or_directory. | 192 | Build a new user home in a temporary filesystem, and mount-bind file_or_directory. |
187 | The modifications to file_or_directory are persistent, everything else is discarded | 193 | The modifications to file_or_directory are persistent, everything else is discarded |
@@ -194,9 +200,6 @@ when running the sandbox as root user. | |||
194 | \fBwritable-var | 200 | \fBwritable-var |
195 | Mount /var directory read-write. This option is available only | 201 | Mount /var directory read-write. This option is available only |
196 | when running the sandbox as root user. | 202 | when running the sandbox as root user. |
197 | .TP | ||
198 | \fBtracelog | ||
199 | Blacklist violations logged to syslog. | ||
200 | .SH Security filters | 203 | .SH Security filters |
201 | The following security filters are currently implemented: | 204 | The following security filters are currently implemented: |
202 | 205 | ||