-
Notifications
You must be signed in to change notification settings - Fork 556
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Nowhitelist option does not disable whitelisting entirely #2882
Comments
As soon as it runs into a whitelist statement, firejail will mount a temporary filesystem on top of your directory. It doesn't matter if you already unwhitelisted the file. |
Note that here
|
@jose1711 Not looked in the code, but I think @netblue30 mean that firejail do the mount on top of $HOME (or what every) once it finds a Here firejail see a |
How to proceed? |
If there is no |
@smitsohu this get fixed once or new whitelist implementation gets merged, right? |
@rusty-snake the alternative whitelist implementation would fix it, yes. |
Say I have a profile shipped with
firejail
that enables whitelisting of$DOWNLOADS
. Something like this:Let's assume we want to disable whitelisting so we create a
foo.local
file and addnowhitelist
:One would expect that
whitelisting
is effectively disabled but this is not true:The text was updated successfully, but these errors were encountered: