Access to /opt is not blacklisted

pigmonkey / firewarden

Open a file via the specified application within a private Firejail sandbox.

The Unlicense

74 stars 7 forks source link

Access to /opt is not blacklisted #1

Closed saildata closed 7 years ago

saildata commented 7 years ago

Steps to reproduce:

firewarden firefox
Navigate to file:///
Select /opt

Actual results: The contents are readable

Expected results: Directory contents are blacklisted

pigmonkey commented 7 years ago

Firejail does not currently support a private /opt, so we can't do anything about this here. I reported it upstream as netblue30/firejail#914.

saildata commented 7 years ago

Thanks for the quick reply! The only workaround I came up with was to copy the output of for file in $( ls /opt ); do echo blacklist opt\/$file; done