diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2019-02-24 22:07:51 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-02-24 22:07:51 +0000 |
commit | 3f38a69ff6f62ccce0eccb39402a6931ad588700 (patch) | |
tree | f2c07b6739b3e86963abf9916a3c1dd2900ab514 | |
parent | Harden img2txt.profile (#2464) (diff) | |
download | firejail-3f38a69ff6f62ccce0eccb39402a6931ad588700.tar.gz firejail-3f38a69ff6f62ccce0eccb39402a6931ad588700.tar.zst firejail-3f38a69ff6f62ccce0eccb39402a6931ad588700.zip |
Harden inkscape.profile (#2465)
-rw-r--r-- | etc/inkscape.profile | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/etc/inkscape.profile b/etc/inkscape.profile index a13f5c378..c1463fb47 100644 --- a/etc/inkscape.profile +++ b/etc/inkscape.profile | |||
@@ -23,6 +23,8 @@ include whitelist-var-common.inc | |||
23 | 23 | ||
24 | apparmor | 24 | apparmor |
25 | caps.drop all | 25 | caps.drop all |
26 | ipc-namespace | ||
27 | machine-id | ||
26 | net none | 28 | net none |
27 | nodbus | 29 | nodbus |
28 | nodvd | 30 | nodvd |
@@ -41,5 +43,6 @@ shell none | |||
41 | private-dev | 43 | private-dev |
42 | private-tmp | 44 | private-tmp |
43 | 45 | ||
46 | memory-deny-write-execute | ||
44 | noexec ${HOME} | 47 | noexec ${HOME} |
45 | noexec /tmp | 48 | noexec /tmp |