>At the moment we recommend granting the capability in the profile and letting firefox setup its sandbox.
why do not ubuntu developers add it? (before they make it other way.) >Unfortunately this means you can't guarantee the rest of the program isn't doing things it shouldn't. what it can do using this capability, without using any other additional apparmor allow rules? can you give any examples? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1861408 Title: firefox apparmor messages To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1861408/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
