diff options
Diffstat (limited to 'todo')
-rw-r--r-- | todo | 21 |
1 files changed, 20 insertions, 1 deletions
@@ -1,4 +1,4 @@ | |||
1 | 1. Deal with .purple directory. It holds the confiig files for pidgin | 1 | 1. Getting "Warning: failed to unmount /sys" on --chroot and --overlay |
2 | 2 | ||
3 | 2. Startup warnings on Arch Linux: | 3 | 2. Startup warnings on Arch Linux: |
4 | 4 | ||
@@ -75,3 +75,22 @@ socat ABSTRACT-LISTEN:/tmp/dbus-awBoQTCc,fork UNIX-CONNECT:/tmp/mysock | |||
75 | 75 | ||
76 | 12. do not allow symlinks for --bind | 76 | 12. do not allow symlinks for --bind |
77 | 77 | ||
78 | 13. While using --net=eth0 assign the name of the interface inside the sandbox as eth0 | ||
79 | |||
80 | 14. check chroot does not allow on symlinks | ||
81 | 15. do not attempt to mount /sys if unmount fails | ||
82 | |||
83 | $ firejail --noprofile --chroot=/tmp/chroot | ||
84 | Parent pid 13915, child pid 13916 | ||
85 | Warning: cannot mount tmpfs on top of /var/log | ||
86 | Warning: cannot find /var/run/utmp | ||
87 | Warning: cannot find home directory | ||
88 | Dropping all Linux capabilities and enforcing default seccomp filter | ||
89 | Warning: failed to unmount /sys | ||
90 | Warning: failed to mount /sys | ||
91 | Warning: cannot disable /sys/firmware directory | ||
92 | Warning: cannot disable /sys/hypervisor directory | ||
93 | Warning: cannot disable /sys/fs directory | ||
94 | Warning: cannot disable /sys/module directory | ||
95 | Warning: cannot disable /sys/power directory | ||
96 | Child process initialized | ||