Allow execution of the script (chmod(1)), andsh: ./updater.sh: Permission denied
chmod 777 /zroot/jails/firefox/root/tmp
.Allow execution of the script (chmod(1)), andsh: ./updater.sh: Permission denied
chmod 777 /zroot/jails/firefox/root/tmp
.what's the command which will undo what chmod 777 does ?
chmod 755 ...
chmod 700 updater.sh
) # chmod 757 /zroot/jails/firefox/root/tmp
(or chmod 777
) # jexec -l -U firefox firefox
chmod 755
). # jexec -U firefox firefox updater.sh
. Make sure the permission is set to execute and owner:group is firefox:firefox.zfs set readonly=on zroot/jails/firefox/root
HereMaking it read only off has no effect.
Code:zfs set readonly=on zroot/jails/firefox/root
readonly=on|off
has only effect on zroot/jails/firefox/root
, not on zroot/jails/firefox/home
where the 'firefox' users home resides.Only the jails root dataset is read only. The jails home dataset and following automatically created directory and sub-directory firefox/Downloads are writable:
Code:# zfs get -r readonly zroot/jails/firefox NAME PROPERTY VALUE SOURCE zroot/jails/firefox readonly off default zroot/jails/firefox/home readonly off default zroot/jails/firefox/root readonly on local zroot/jails/firefox/tmp readonly off default zroot/jails/firefox/var readonly off default
Yes all the pages like Youtube, Facebook, etc are loading fine.Herereadonly=on|off
has only effect onzroot/jails/firefox/root
, not onzroot/jails/firefox/home
where the 'firefox' users home resides.
You may have connection, not write permission problems. Check the connection from the jail. Do normal internet pages load?
# jexec -l firefox
# chown -R firefox:firefox /usr/home/firefox/
host # jexec -l -U firefox firefox
jail $ ls -lR .mozilla/firefox/<profile> | grep ^d
drwx...
. Sample:drwxr-xr-x 2 firefox firefox ...
about:addons
It happened after sometime. Frankly speaking this is disappointing. Creating this Jail wasn't easy. All credit does to you.Was the addon installation and file download issue present from the beginning with those profiles or did it happened after some time?
It's hard to tell where the problem exactly lies, but the indication that 1 of 3 profiles has no problems, I would say, puts the blame on the Firefox profile, not the jail.Frankly speaking this is disappointing. Creating this Jail wasn't easy.
Looking at the vulnerability lists of both systems, in all good conscious, I can't speak for one system or the other.Q) Running Firefox inside a Jail Vs Running Firefox inside a Virtualbox VM ..... Why provides more isolation ?
That's extremely depressing. What's the best way to keep personal data isolated ? So that be it a OS level vulnerability or a browser exploit my personal data is safe ?Looking at the vulnerability lists of both systems, in all good conscious, I can't speak for one system or the other.
What kind of personal data?What's the best way to keep personal data isolated ?
By personal data I mean everything that I have stored locally like family photos, songs, videos, my KeePassXC database, etc.What kind of personal data?