Comments (4)
These are not options (option arg for mount()) but a flag, we don't currently have config val for setting MS_NOSUID,MS_NODEV etc, only for MS_RDONLY, though we could add it I guess
from nsjail.
+1
I'd like the ability to create a tmpfs with noexec.
from nsjail.
Hi,
I just added relevant fields to config proto.
mount {
dst: "/tmp"
fstype: "tmpfs"
rw: true
nosuid: true
nodev: true
}
Should work now.
Also noexec
is available in the same fashion.
from nsjail.
Thanks!
from nsjail.
Related Issues (20)
- [Feature Request] Support for core scheduling in nsjail
- Disable creation of cgroups in jail HOT 1
- sched_setaffinity(max_cpus=1) failed: Invalid argument HOT 2
- Safe default /dev mounts? HOT 3
- check pid
- build fails after kafel update HOT 5
- build fails on 32 bit targets HOT 2
- Add millisecond precision to nsjail logs HOT 1
- Package nsjail for ease of installation on Linux
- Build fails on armv7l (32 bit) HOT 2
- mnt:mountPt fails with invalid argument HOT 1
- Better fs isolation HOT 2
- Using nsjail with GPU and OpenGL HOT 1
- Include installation instructions in the README HOT 1
- Compilation fails HOT 1
- Making configs
- Updated vendored kafel to enable build on gcc13 HOT 1
- Python Tracing and Runtime security
- Build failed on arm64 with clang-15 HOT 1
- Build Fails when compiling on musl-libc system HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from nsjail.