diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2019-06-24 23:17:09 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-06-24 23:17:09 +0000 |
commit | c3b38606c73d0ea9b13e9a1908d105dff528390f (patch) | |
tree | ecab217b96429e8fe0c24783eaaee605a19162af | |
parent | Improve profile PRs (Related to #2739) (#2784) (diff) | |
download | firejail-c3b38606c73d0ea9b13e9a1908d105dff528390f.tar.gz firejail-c3b38606c73d0ea9b13e9a1908d105dff528390f.tar.zst firejail-c3b38606c73d0ea9b13e9a1908d105dff528390f.zip |
Tighten SSH with nodbus (#2789)
* nodbus for ssh-agent
* nodbus for ssh.profile
-rw-r--r-- | etc/ssh-agent.profile | 1 | ||||
-rw-r--r-- | etc/ssh.profile | 1 |
2 files changed, 2 insertions, 0 deletions
diff --git a/etc/ssh-agent.profile b/etc/ssh-agent.profile index 9af747b62..55df45a87 100644 --- a/etc/ssh-agent.profile +++ b/etc/ssh-agent.profile | |||
@@ -19,6 +19,7 @@ include disable-programs.inc | |||
19 | caps.drop all | 19 | caps.drop all |
20 | netfilter | 20 | netfilter |
21 | no3d | 21 | no3d |
22 | nodbus | ||
22 | nodvd | 23 | nodvd |
23 | nonewprivs | 24 | nonewprivs |
24 | noroot | 25 | noroot |
diff --git a/etc/ssh.profile b/etc/ssh.profile index ce0e54a0d..7a9bb5abe 100644 --- a/etc/ssh.profile +++ b/etc/ssh.profile | |||
@@ -22,6 +22,7 @@ caps.drop all | |||
22 | ipc-namespace | 22 | ipc-namespace |
23 | netfilter | 23 | netfilter |
24 | no3d | 24 | no3d |
25 | nodbus | ||
25 | nodvd | 26 | nodvd |
26 | nogroups | 27 | nogroups |
27 | nonewprivs | 28 | nonewprivs |