[GH-ISSUE #2728] Installing some Linux packages in overlayFS? #1718

New issue

Closed

opened 2026-05-05 08:23:00 -06:00 by gitea-mirror · 3 comments

gitea-mirror commented

2026-05-05 08:23:00 -06:00

Owner

Originally created by @garywill on GitHub (May 29, 2019).
Original GitHub issue: https://github.com/netblue30/firejail/issues/2728

Hello firejail,

I want to try some software on my Linux but don't want to install them to my real system. Installing to firejail overlay FS is an option.

But I can't use sudo to install in firejail. Running firejail as root is not a good idea, and root in firejail can't use X.
What I want to do to overlayFS is

Installing software as root
Running software (GUI) as general user

Is there some way to do that? Does (will) firejail support uid/gid shifting (including FS)?

Originally created by @garywill on GitHub (May 29, 2019). Original GitHub issue: https://github.com/netblue30/firejail/issues/2728 Hello firejail, I want to try some software on my Linux but don't want to install them to my real system. Installing to firejail overlay FS is an option. But I can't use sudo to install in firejail. Running firejail as root is not a good idea, and root in firejail can't use X. What I want to do to overlayFS is 1. Installing software as root 1. Running software (GUI) as general user Is there some way to do that? Does (will) firejail support uid/gid shifting (including FS)?

gitea-mirror

2026-05-05 08:23:00 -06:00

closed this issue
added the
question_old
label

gitea-mirror commented

2026-05-05 08:23:03 -06:00

Author

Owner

@rusty-snake commented on GitHub (May 29, 2019):

@garywill what about https://firejail.wordpress.com/documentation-2/basic-usage/#overlayfs?

@rusty-snake commented on GitHub (May 29, 2019): @garywill what about https://firejail.wordpress.com/documentation-2/basic-usage/#overlayfs?

gitea-mirror commented

2026-05-05 08:23:04 -06:00

Author

Owner

@rusty-snake commented on GitHub (May 30, 2019):

https://github.com/netblue30/firejail/issues/1139#issuecomment-306063071

This is an example using OpenShot video editor:

In a terminal start a overlayfs sandbox (you would need a kernel 3.18 or better):
$ firejail --name=test --overlay --private --noblacklist=/sbin --noblacklist=/usr/sbin
In a different terminal, join the sandbox as root and install the program - I am using apt-get on Debian:
$ sudo firejail --join=test
Switching to pid 2464, the first child process inside the sandbox changing root to /proc/2464/root
Child process initialized in 6.05 ms
# apt-get install openshot
# exit
Back in the first terminal run the program
$ openshot
Once you close both sandboxes, overlayfs is disabled and openshot disappears.

@rusty-snake commented on GitHub (May 30, 2019): https://github.com/netblue30/firejail/issues/1139#issuecomment-306063071 > This is an example using OpenShot video editor: > > In a terminal start a overlayfs sandbox (you would need a kernel 3.18 or better): > > $ firejail --name=test --overlay --private --noblacklist=/sbin --noblacklist=/usr/sbin > > In a different terminal, join the sandbox as root and install the program - I am using apt-get on Debian: > > $ sudo firejail --join=test > Switching to pid 2464, the first child process inside the sandbox changing root to /proc/2464/root > Child process initialized in 6.05 ms > # apt-get install openshot > # exit > > Back in the first terminal run the program > > $ openshot > > Once you close both sandboxes, overlayfs is disabled and openshot disappears.

gitea-mirror commented

2026-05-05 08:23:05 -06:00

Author

Owner

@rusty-snake commented on GitHub (May 30, 2019):

I think this is answered, @garywill if not or you have future questions, feel free to reopen.

@rusty-snake commented on GitHub (May 30, 2019): I think this is answered, @garywill if not or you have future questions, feel free to reopen.

gitea-mirror referenced this issue

2026-05-05 08:25:13 -06:00

[GH-ISSUE #2792] Wiki: Frequently Asked Questions #1747

gitea-mirror referenced this issue

2026-05-05 08:45:39 -06:00

[GH-ISSUE #3323] Can't open links from hexchat #2086