From: Robert Swiecki <robert@swiecki.net>
Date: Sun, 28 May 2017 00:55:50 +0000 (+0200)
Subject: configs: tigher policy for firefox
X-Git-Tag: 1.4~43
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=f0eb0b3dbfa231ce60c959435c970cfb7506cc3b;p=platform%2Fupstream%2Fnsjail.git

configs: tigher policy for firefox
---

diff --git a/configs/firefox-with-net.cfg b/configs/firefox-with-net.cfg
index 412207c..8297700 100644
--- a/configs/firefox-with-net.cfg
+++ b/configs/firefox-with-net.cfg
@@ -49,14 +49,8 @@ mount {
 }
 
 mount {
-	src: "/sbin"
-	dst: "/sbin"
-	is_bind: true
-}
-
-mount {
-	src: "/usr"
-	dst: "/usr"
+	src: "/usr/lib"
+	dst: "/usr/lib"
 	is_bind: true
 }
 
@@ -80,6 +74,12 @@ mount {
 	is_bind: true
 }
 
+mount {
+	src: "/usr/share"
+	dst: "/usr/share"
+	is_bind: true
+}
+
 mount {
 	src: "/dev/urandom"
 	dst: "/dev/urandom"
@@ -150,5 +150,5 @@ seccomp_string: "
 "
 
 exec_bin {
-        path: "/usr/bin/firefox"
+        path: "/usr/lib/firefox/firefox"
 }