From 0c8dc0e6dfbd9272bc22b5476259cd68a1fab35c Mon Sep 17 00:00:00 2001 From: Drew DeVault Date: Fri, 2 Dec 2016 10:32:08 -0500 Subject: Clarify that executable has to be a full path --- sway/sway-security.7.txt | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/sway/sway-security.7.txt b/sway/sway-security.7.txt index ec11f10b..a1ed9e32 100644 --- a/sway/sway-security.7.txt +++ b/sway/sway-security.7.txt @@ -104,11 +104,13 @@ access: **permit** :: Permits to use (each feature seperated by a space). - may be * to affect the default policy. + may be * to affect the default policy, or the full path to the + executable file. **reject** :: Disallows from using (each feature seperated by a space). - may be * to affect the default policy. + may be * to affect the default policy, or the full path to the + executable file. Note that policy enforcement requires procfs to be mounted at /proc and the sway process to be able to access _/proc/[pid]/exe_ (see **procfs(5)** for details on -- cgit v1.2.3