Package: firejail-profiles
Version: 0.9.68-3
Severity: normal
Dear Maintainer,
I find that I cannot access a web server running in my local lan with its
mDNS domain name with firefox-esr running inside firejail while I can with
firefox-esr running without firejail. This problem also applies to falkon,
chromium, when running inside firejail, but epiphany (gnome web) is not
affected.
I manage to run bash in firejail with profiles of these affected browsers,
and find that /run/avahi-daemon/ does not present in their jailed file
system, so it seems that some rules blacklist, or fail to whitelist this
path in these profiles or included rulesets.
-- System Information:
Debian Release: bookworm/sid
APT prefers testing
APT policy: (900, 'testing'), (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 5.16.0-4-amd64 (SMP w/4 CPU threads; PREEMPT)
Kernel taint flags: TAINT_FIRMWARE_WORKAROUND
Locale: LANG=zh_CN.utf8, LC_CTYPE=zh_CN.utf8 (charmap=UTF-8), LANGUAGE
not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages firejail-profiles depends on:
ii firejail 0.9.68-3
firejail-profiles recommends no packages.
firejail-profiles suggests no packages.
-- no debconf information
