github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-21 06:45:29 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 1

firejail.config: add warning about allow-tray

Browse source 
According to #4053, there is currently no safe (in the sense of not
allowing to escape the sandbox) implementation of
`org.kde.StatusNotifierWatcher`, but it is required by multiple programs
for tray functionality.  Users may not be aware of this (for example,
see #4508), so add a warning about it.

Note: allow-tray was added on commit c86cae2d0 ("Add new condition
ALLOW_TRAY", 2021-09-04) / PR #4510.
This commit is contained in:
Kelvin M. Klann 2022-02-14 21:52:32 -03:00
parent 6f266dbd80
commit b539d3e758
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
etc/firejail.config
View file

@ -2,7 +2,8 @@
# keyword-argument pairs, one per line. Most features are enabled by default.
# Use 'yes' or 'no' as configuration values.
# Allow programs to display a tray icon
# Allow programs to display a tray icon (warning: allows escaping the sandbox;
# see https://github.com/netblue30/firejail/discussions/4053)
# allow-tray no
# Enable AppArmor functionality, default enabled.