procps: sandbox
This commit is contained in:
parent
5e5a1fbaae
commit
8821b3ca7d
|
@ -718,7 +718,11 @@ in
|
|||
"/sys/kernel"
|
||||
];
|
||||
|
||||
procps = {};
|
||||
# procps: free, pgrep, pidof, pkill, ps, pwait, top, uptime, couple others
|
||||
procps.sandbox.method = "bwrap";
|
||||
procps.sandbox.extraConfig = [
|
||||
"--sane-sandbox-keep-namespace" "pid"
|
||||
];
|
||||
|
||||
pstree.sandbox.method = "landlock";
|
||||
pstree.sandbox.extraPaths = [
|
||||
|
|
Loading…
Reference in New Issue
Block a user