user@host:~$ flatpak run org.mozilla.firefox
bwrap: Can't find source path /sys/block: Permission denied
user@host:~$
Note: All these hardened features are enabled in my VM:
related feature:
https://www.kicksecure.com/wiki/Security-misc#Reduce_Kernel_Information_Leaks
flatpak requires /sys/block it. See this highlighted line:
reported upstream:
workaround:
https://www.kicksecure.com/wiki/Security-misc#Whitelisting_Applications
1 Like