diff options
Diffstat (limited to 'test/features/features.txt')
-rw-r--r-- | test/features/features.txt | 36 |
1 files changed, 6 insertions, 30 deletions
diff --git a/test/features/features.txt b/test/features/features.txt index 1dedff357..0c41090aa 100644 --- a/test/features/features.txt +++ b/test/features/features.txt | |||
@@ -9,11 +9,7 @@ C - chroot filesystem | |||
9 | 1. Default features (tesing with --noprofile) | 9 | 1. Default features (tesing with --noprofile) |
10 | 10 | ||
11 | 1.1 disable /boot | 11 | 1.1 disable /boot |
12 | - N, O, C | ||
13 | |||
14 | 1.2 new /proc | 12 | 1.2 new /proc |
15 | - N, O, C | ||
16 | |||
17 | 1.3 new /sys | 13 | 1.3 new /sys |
18 | - N, O fails remount, C fails remount | 14 | - N, O fails remount, C fails remount |
19 | 15 | ||
@@ -23,49 +19,23 @@ C - chroot filesystem | |||
23 | - /etc/group: N, O, C to test | 19 | - /etc/group: N, O, C to test |
24 | 20 | ||
25 | 1.5 PID namespace | 21 | 1.5 PID namespace |
26 | - N, O, C | ||
27 | |||
28 | 1.6 new /var/log | 22 | 1.6 new /var/log |
29 | - N, O, C | ||
30 | |||
31 | 1.7 new /var/tmp | 23 | 1.7 new /var/tmp |
32 | -N, O, C | ||
33 | |||
34 | 1.8 disable /etc/firejail and ~/.config/firejail | 24 | 1.8 disable /etc/firejail and ~/.config/firejail |
35 | -N, O, C | ||
36 | |||
37 | 1.9 mount namespace | 25 | 1.9 mount namespace |
38 | |||
39 | 1.10 disable /selinux | 26 | 1.10 disable /selinux |
40 | - N, O, C | ||
41 | |||
42 | |||
43 | 27 | ||
44 | 2. Networking features | 28 | 2. Networking features |
45 | 29 | ||
46 | 2.1 Hostname (use --hostname=newhostname, do a ping and cat /etc/hostname) | 30 | 2.1 Hostname (use --hostname=newhostname, do a ping and cat /etc/hostname) |
47 | - N, O, C | ||
48 | - ping disabled for C by default seccomp filter, use "getent hosts bingo" | 31 | - ping disabled for C by default seccomp filter, use "getent hosts bingo" |
49 | 32 | ||
50 | 2.2 DNS (use --dns=4.2.2.1, use "dig google.com") | 33 | 2.2 DNS (use --dns=4.2.2.1, use "dig google.com") |
51 | - N, O, C | ||
52 | |||
53 | 2.3 mac-vlan (use --net=eth0 and --noprofile; run ifconfig and dig google.com) | 34 | 2.3 mac-vlan (use --net=eth0 and --noprofile; run ifconfig and dig google.com) |
54 | - N, O, C | ||
55 | - test --ip: N, O, C | ||
56 | |||
57 | 2.4 bridge (use --net=br0 and --noprofile; run ifconfig, netstat -rn, ping default gw) | 35 | 2.4 bridge (use --net=br0 and --noprofile; run ifconfig, netstat -rn, ping default gw) |
58 | - N, O, C | ||
59 | - ping disabled for C by default seccomp filter - transfer test not implemented for C | 36 | - ping disabled for C by default seccomp filter - transfer test not implemented for C |
60 | - test --ip: N, O, C | ||
61 | |||
62 | 2.5 interface | 37 | 2.5 interface |
63 | - N, O, C | ||
64 | |||
65 | 2.6 Default gw (--noprofile --net=eth0 --defaultgw=192.168.1.10, run netstat -rn) | 38 | 2.6 Default gw (--noprofile --net=eth0 --defaultgw=192.168.1.10, run netstat -rn) |
66 | - N, O, C | ||
67 | |||
68 | |||
69 | 39 | ||
70 | 3. Filesystem features (use --noprofile) | 40 | 3. Filesystem features (use --noprofile) |
71 | 41 | ||
@@ -73,3 +43,9 @@ C - chroot filesystem | |||
73 | 3.2 read-only | 43 | 3.2 read-only |
74 | 3.3 blacklist | 44 | 3.3 blacklist |
75 | 3.4 whitelist home | 45 | 3.4 whitelist home |
46 | 3.5 private-dev | ||
47 | - O, C - somehow /dev/log is missing | ||
48 | 3.6 private-etc | ||
49 | - O not working | ||
50 | |||
51 | \ No newline at end of file | ||