From a344c555ff282c23a8274d10ad0f75eb4fae6836 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Sun, 10 Jul 2016 10:08:53 -0400
Subject: --noexec

---
 README.md | 23 +++++++++++++++++++++--
 1 file changed, 21 insertions(+), 2 deletions(-)

(limited to 'README.md')

diff --git a/README.md b/README.md
index c16a32e62..a60c8dd7f 100644
--- a/README.md
+++ b/README.md
@@ -90,9 +90,28 @@ AUDIT
        Limitations: audit feature is not implemented for --x11 commands.
 `````
 
-## --private-dev enhancements - work in progress!
+## --noexec
+`````
+       --noexec=dirname_or_filename
+              Remount directory or file noexec, nodev and nosuid.
+
+              Example:
+              $ firejail --noexec=/tmp
+
+              /etc and /var are noexec by default. If there are more than one
+              mount operation on the path of the file  or  directory,  noexec
+              should  be  applied to the last one. Always check if the change
+              took effect inside the sandbox.
+`````
 
-The following devices are added to --private-dev list.
+## --rmenv
+`````
+      --rmenv=name
+              Remove environment variable in the new sandbox.
+
+              Example:
+              $ firejail --rmenv=DBUS_SESSION_BUS_ADDRESS
+`````
 
 ## Converting profiles to private-bin - work in progress!
 
-- 
cgit v1.2.3-54-g00ecf