diff options
Diffstat (limited to 'src')
-rw-r--r-- | src/man/firejail.txt | 10 |
1 files changed, 3 insertions, 7 deletions
diff --git a/src/man/firejail.txt b/src/man/firejail.txt index d34725dc5..cdc43be83 100644 --- a/src/man/firejail.txt +++ b/src/man/firejail.txt | |||
@@ -2494,9 +2494,7 @@ AppArmor support is disabled by default at compile time. Use --enable-apparmor c | |||
2494 | .br | 2494 | .br |
2495 | $ ./configure --prefix=/usr --enable-apparmor | 2495 | $ ./configure --prefix=/usr --enable-apparmor |
2496 | .TP | 2496 | .TP |
2497 | During software install, a generic AppArmor profile file, firejail-default, is placed in /etc/apparmor.d directory. The local customizations can be | 2497 | During software install, a generic AppArmor profile file, firejail-default, is placed in /etc/apparmor.d directory. The local customizations can be placed in /etc/apparmor.d/local/firejail-local. The profile needs to be loaded into the kernel by reloading apparmor.service, rebooting the system or running the following command as root: |
2498 | placed in /etc/apparmor.d/local/firejail-local. The profile needs to be loaded into the kernel by running the following command as root, reloading | ||
2499 | apparmor.service or rebooting the system: | ||
2500 | .br | 2498 | .br |
2501 | 2499 | ||
2502 | .br | 2500 | .br |
@@ -2506,8 +2504,7 @@ The installed profile is supplemental for main firejail functions and among othe | |||
2506 | .br | 2504 | .br |
2507 | 2505 | ||
2508 | .br | 2506 | .br |
2509 | - Disable ptrace. With ptrace it is possible to inspect and hijack running programs. Usually this is needed only for debugging. | 2507 | - Disable ptrace. With ptrace it is possible to inspect and hijack running programs. Usually this is needed only for debugging. You should have no problems running Chromium or Firefox. This feature is available only on Ubuntu kernels. |
2510 | You should have no problems running Chromium or Firefox. This feature is available only on Ubuntu kernels. | ||
2511 | .br | 2508 | .br |
2512 | 2509 | ||
2513 | .br | 2510 | .br |
@@ -2515,8 +2512,7 @@ You should have no problems running Chromium or Firefox. This feature is availab | |||
2515 | .br | 2512 | .br |
2516 | 2513 | ||
2517 | .br | 2514 | .br |
2518 | - Allow running programs only from well-known system paths, such as /bin, /sbin, /usr/bin etc. Those paths are available as read-only. Running | 2515 | - Allow running programs only from well-known system paths, such as /bin, /sbin, /usr/bin etc. Those paths are available as read-only. Running programs and scripts from user home or other directories writable by the user is not allowed. |
2519 | programs and scripts from user home or other directories writable by the user is not allowed. | ||
2520 | .br | 2516 | .br |
2521 | 2517 | ||
2522 | .br | 2518 | .br |