diff options
Diffstat (limited to 'src')
-rw-r--r-- | src/firejail/usage.c | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/src/firejail/usage.c b/src/firejail/usage.c index 9c91b4630..a21633349 100644 --- a/src/firejail/usage.c +++ b/src/firejail/usage.c | |||
@@ -74,6 +74,7 @@ void usage(void) { | |||
74 | printf(" --dns.print=name|pid - print DNS configuration.\n"); | 74 | printf(" --dns.print=name|pid - print DNS configuration.\n"); |
75 | 75 | ||
76 | printf(" --env=name=value - set environment variable.\n"); | 76 | printf(" --env=name=value - set environment variable.\n"); |
77 | printf(" --force - attempt to start a new sandbox inside the existing sandbox.\n"); | ||
77 | printf(" --fs.print=name|pid - print the filesystem log.\n"); | 78 | printf(" --fs.print=name|pid - print the filesystem log.\n"); |
78 | printf(" --get=name|pid filename - get a file from sandbox container.\n"); | 79 | printf(" --get=name|pid filename - get a file from sandbox container.\n"); |
79 | #ifdef HAVE_GIT_INSTALL | 80 | #ifdef HAVE_GIT_INSTALL |
@@ -98,6 +99,7 @@ void usage(void) { | |||
98 | #ifdef HAVE_NETWORK | 99 | #ifdef HAVE_NETWORK |
99 | printf(" --join-network=name|pid - join the network namespace.\n"); | 100 | printf(" --join-network=name|pid - join the network namespace.\n"); |
100 | #endif | 101 | #endif |
102 | printf(" --join-or-start=name|pid - join the sandbox or start a new one.\n"); | ||
101 | printf(" --list - list all sandboxes.\n"); | 103 | printf(" --list - list all sandboxes.\n"); |
102 | printf(" --ls=name|pid dir_or_filename - list files in sandbox container.\n"); | 104 | printf(" --ls=name|pid dir_or_filename - list files in sandbox container.\n"); |
103 | #ifdef HAVE_NETWORK | 105 | #ifdef HAVE_NETWORK |
@@ -115,6 +117,7 @@ void usage(void) { | |||
115 | printf(" --net=none - enable a new, unconnected network namespace.\n"); | 117 | printf(" --net=none - enable a new, unconnected network namespace.\n"); |
116 | printf(" --netfilter[=filename] - enable the default client network filter.\n"); | 118 | printf(" --netfilter[=filename] - enable the default client network filter.\n"); |
117 | printf(" --netfilter6=filename - enable the IPv6 network filter.\n"); | 119 | printf(" --netfilter6=filename - enable the IPv6 network filter.\n"); |
120 | printf(" --netns=name - Run the program in a named, persistent network namespace.\n"); | ||
118 | printf(" --netstats - monitor network statistics.\n"); | 121 | printf(" --netstats - monitor network statistics.\n"); |
119 | #endif | 122 | #endif |
120 | printf(" --nice=value - set nice value.\n"); | 123 | printf(" --nice=value - set nice value.\n"); |
@@ -122,11 +125,12 @@ void usage(void) { | |||
122 | printf(" --noblacklist=filename - disable blacklist for file or directory .\n"); | 125 | printf(" --noblacklist=filename - disable blacklist for file or directory .\n"); |
123 | printf(" --noexec=filename - remount the file or directory noexec nosuid and nodev.\n"); | 126 | printf(" --noexec=filename - remount the file or directory noexec nosuid and nodev.\n"); |
124 | printf(" --nogroups - disable supplementary groups.\n"); | 127 | printf(" --nogroups - disable supplementary groups.\n"); |
128 | printf(" --nonewprivs - sets the NO_NEW_PRIVS prctl.\n"); | ||
125 | printf(" --noprofile - do not use a security profile.\n"); | 129 | printf(" --noprofile - do not use a security profile.\n"); |
126 | #ifdef HAVE_USERNS | 130 | #ifdef HAVE_USERNS |
127 | printf(" --noroot - install a user namespace with only the current user.\n"); | 131 | printf(" --noroot - install a user namespace with only the current user.\n"); |
128 | #endif | 132 | #endif |
129 | printf(" --nonewprivs - sets the NO_NEW_PRIVS prctl.\n"); | 133 | printf(" --nosound - disable sound system.\n"); |
130 | printf(" --nowhitelist=filename - disable whitelist for file or directory .\n"); | 134 | printf(" --nowhitelist=filename - disable whitelist for file or directory .\n"); |
131 | printf(" --output=logfile - stdout logging and log rotation.\n"); | 135 | printf(" --output=logfile - stdout logging and log rotation.\n"); |
132 | printf(" --overlay - mount a filesystem overlay on top of the current filesystem.\n"); | 136 | printf(" --overlay - mount a filesystem overlay on top of the current filesystem.\n"); |
@@ -147,6 +151,7 @@ void usage(void) { | |||
147 | printf(" --private-etc=file,directory - build a new /etc in a temporary\n"); | 151 | printf(" --private-etc=file,directory - build a new /etc in a temporary\n"); |
148 | printf("\tfilesystem, and copy the files and directories in the list.\n"); | 152 | printf("\tfilesystem, and copy the files and directories in the list.\n"); |
149 | printf(" --private-tmp - mount a tmpfs on top of /tmp directory.\n"); | 153 | printf(" --private-tmp - mount a tmpfs on top of /tmp directory.\n"); |
154 | printf(" --private-opt=file,directory - build a new /opt in a temporary filesystem.\n"); | ||
150 | printf(" --profile=filename - use a custom profile.\n"); | 155 | printf(" --profile=filename - use a custom profile.\n"); |
151 | printf(" --profile-path=directory - use this directory to look for profile files.\n"); | 156 | printf(" --profile-path=directory - use this directory to look for profile files.\n"); |
152 | printf(" --protocol=protocol,protocol,protocol - enable protocol filter.\n"); | 157 | printf(" --protocol=protocol,protocol,protocol - enable protocol filter.\n"); |