colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

sane-vpn: use bwrap instead of just pasta so that the uids get mapped and programs can be happy

Browse Source
This commit is contained in:
Colin 2024-05-26 13:04:13 +00:00
parent f158842c70
commit ed97a81ef3
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
pkgs/additional/sane-scripts/src/sane-vpn
View File

@ -100,7 +100,10 @@ vpnDo() {
cmd=(/bin/sh)
fi
debug "cmd: ${cmd[*]}"
sanebox --sanebox-method pastaonly --sanebox-net-dev "$name" --sanebox-net-gateway "$addrV4" --sanebox-dns "$dns" "${cmd[@]}"
# sanebox --sanebox-method pastaonly --sanebox-net-dev "$name" --sanebox-net-gateway "$addrV4" --sanebox-dns "$dns" "${cmd[@]}"
sanebox --sanebox-method bwrap --sanebox-keep-namespace all --sanebox-path / --sanebox-no-portal \
--sanebox-net-dev "$name" --sanebox-net-gateway "$addrV4" --sanebox-dns "$dns" \
"${cmd[@]}"
}
usage() {