From 3fe1b06a36cefc497e957b603d1a5231ba7fbc02 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Fri, 20 Apr 2018 09:28:42 -0400
Subject: cleanup

---
 src/lib/firejail_user.c | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'src/lib/firejail_user.c')

diff --git a/src/lib/firejail_user.c b/src/lib/firejail_user.c
index 5d92aa133..7d9784392 100644
--- a/src/lib/firejail_user.c
+++ b/src/lib/firejail_user.c
@@ -45,6 +45,12 @@ int firejail_user_check(const char *name) {
 	if (strcmp(name, "root") == 0)
 		return 1;
 
+	// user nobody disabled by default
+	if (strcmp(name, "nobody") == 0) {
+		fprintf(stderr, "Error: user nobody is not allowed to run the sandbox\n");
+		exit(1);
+	}
+
 	// check file existence
 	char *fname = get_fname();
 	if (access(fname, F_OK)) {
-- 
cgit v1.2.3-70-g09d2