Jump to content
funtoo forums
  • 0
mrl5

sandboxing + /tmp/pulse-socket permissions

Question

I'm sandboxing some applications and I want to have a sound. I did what's written here: https://wiki.gentoo.org/wiki/Simple_sandbox#Configure_Firefox_to_output_sound_to_larry.27s_PulseAudio_daemon

echo -e ".include /etc/pulse/default.pa\nload-module module-native-protocol-unix auth-anonymous=1 socket=/tmp/pulse-socket" > ~larry/.config/pulse/default.pa

but I dont like that /tmp/pulse-socket has 777 (rwxrwxrwx) permissions. 

I found this link: https://gist.github.com/Earnestly/4acc782087c0a9d9db58 created pulseaudio user, added other users to that group and changed `auth-anonymous=1` to `auth-group=pulseaudio` but still I have 777 (rwxrwxrwx) permissions on /tmp/pulse-socket

 

How can I change the permissions to e.g. 770? Is it even a good idea to "sandbox" webrowser or media player like that? (https://bugs.funtoo.org/browse/FL-6453)

Share this post


Link to post
Share on other sites

1 answer to this question

Recommended Posts

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Answer this question...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...