mirror of
https://github.com/netblue30/firejail.git
synced 2026-05-21 06:45:29 -06:00
Initial adding of memory-deny-write-execute to profiles
- mdwe breaks most vm-based languages so python/java/javascript and some mono programs are not compatible - mdwe also breaks most 3d accelerated programs such as 3d games - mdwe is similar to PaX's mprotect meaning PaX flag managers can be used as reference -- See https://github.com/copperhead/paxd-archive/blob/master/paxd.conf -- See https://github.com/nning/linux-pax-flags
This commit is contained in:
Tad
parent
0dba38435e
commit
b18f42ab02
16 changed files with 20 additions and 0 deletions
|
|
@ -37,5 +37,6 @@ private-dev
|
|||
private-tmp
|
||||
disable-mnt
|
||||
|
||||
memory-deny-write-execute
|
||||
noexec ${HOME}
|
||||
noexec /tmp
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue