I noticed that jailcheck reports for firefox with the stock firefox.profile (not modifications):
68426:username::/usr/bin/firejail /usr/bin/firefox
Virtual dirs: /home/username, /tmp, /var/tmp, /dev, /usr/share,
/run/user/1000,
Warning: I can run programs in /run/user/1000
Networking: enabled
I think this might be due using PSD (profile daemon sync) and having the whole firefox profile in tmpfs.
Adding "noexec /run/user/1000/" didn't help.
But I guess it should not be possible for firefox to exec something in /run/user/1000/ for security reasons?
Hi all,
I noticed that jailcheck reports for firefox with the stock firefox.profile (not modifications):
I think this might be due using PSD (profile daemon sync) and having the whole firefox profile in tmpfs. Adding "noexec /run/user/1000/" didn't help.
But I guess it should not be possible for firefox to exec something in /run/user/1000/ for security reasons?