github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6

merge update man pages (private-dev, noexec)

Browse source
This commit is contained in:
netblue30 2019-05-30 09:08:54 -04:00
parent 873fe6133e
commit bb18e513ae
3 changed files with 10 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

5
src/man/firejail-profile.txt
View file

@ -210,8 +210,9 @@ Mount an empty temporary filesystem on top of the .cache directory in user home.
modifications are discarded when the sandbox is closed.
.TP
\fBprivate-dev
Create a new /dev directory. Only disc, dri, null, full, zero, tty, pts, ptmx,
random, snd, urandom, video, log and shm devices are available.
Create a new /dev directory. Only disc, dri, dvb, hidraw, null, full, zero, tty, pts, ptmx,
random, snd, urandom, video, log, shm and usb devices are available.
Use the options no3d, nodvd, nosound, notv, nou2f and novideo for additional restrictions.
.TP
\fBkeep-dev-shm
/dev/shm directory is untouched (even with private-dev).

6
src/man/firejail.txt
View file

@ -1038,8 +1038,7 @@ $ firejail \-\-noexec=/tmp
.br
.br
/etc and /var are noexec by default if the sandbox was started as a regular user. If there are more than one mount operation
on the path of the file or directory, noexec should be applied to the last one. Always check if the change took effect inside the sandbox.
/etc and /var are noexec by default if the sandbox was started as a regular user.
.TP
\fB\-\-nogroups
@ -1215,7 +1214,8 @@ $ firejail \-\-private-cache openbox
.TP
\fB\-\-private-dev
Create a new /dev directory. Only disc, dri, null, full, zero, tty, pts, ptmx, random, snd, urandom, video, log and shm devices are available.
Create a new /dev directory. Only disc, dri, dvb, hidraw, null, full, zero, tty, pts, ptmx, random, snd, urandom, video, log, shm and usb devices are available.
Use the options --no3d, --nodvd, --nosound, --notv, --nou2f and --novideo for additional restrictions.
.br
.br

8
status
View file

@ -1,15 +1,15 @@
un 29 test:
Jun 29 test:
TESTING: tar
TESTING ERROR 4.2
TESTING: DNS (test/environment/dns.exp)
netblue@debian:~/work/github/LTSbase/test/environment$ TESTING ERROR 1.2
todo May 23: add header guard to firecfg.h
todo May 18: man pages: add FIREJAIL_QUIET
May 23: add header guard to firecfg.h
May 18: man pages: add FIREJAIL_QUIET
todo May 17: Merge pull request #2688 from laomaiweng/nodbus-enhancements
todo May 17: Merge pull request #2701 from smitsohu/opath - bring back support for Centos6
todo May 4: update man pages (private-dev, noexec)
May 4: update man pages (private-dev, noexec)
todo April 21: typo
todo April 20: typo and merges
todo Mar 23: mount runtime seccomp files read-only