diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2019-02-24 21:31:17 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-02-24 21:31:17 +0000 |
commit | 4196637adc23b071d48efdcc03962c3256eaf511 (patch) | |
tree | 38c6847e4cb908f10d9cc0b0774382c6f8e0a1da | |
parent | Harden file.profile (#2458) (diff) | |
download | firejail-4196637adc23b071d48efdcc03962c3256eaf511.tar.gz firejail-4196637adc23b071d48efdcc03962c3256eaf511.tar.zst firejail-4196637adc23b071d48efdcc03962c3256eaf511.zip |
Harden git.profile (#2459)
-rw-r--r-- | etc/git.profile | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/etc/git.profile b/etc/git.profile index 243516e88..e2d938416 100644 --- a/etc/git.profile +++ b/etc/git.profile | |||
@@ -22,7 +22,10 @@ include disable-common.inc | |||
22 | include disable-passwdmgr.inc | 22 | include disable-passwdmgr.inc |
23 | include disable-programs.inc | 23 | include disable-programs.inc |
24 | 24 | ||
25 | apparmor | ||
25 | caps.drop all | 26 | caps.drop all |
27 | ipc-namespace | ||
28 | machine-id | ||
26 | netfilter | 29 | netfilter |
27 | no3d | 30 | no3d |
28 | nodvd | 31 | nodvd |
@@ -39,3 +42,7 @@ shell none | |||
39 | 42 | ||
40 | private-cache | 43 | private-cache |
41 | private-dev | 44 | private-dev |
45 | |||
46 | memory-deny-write-execute | ||
47 | noexec ${HOME} | ||
48 | noexec /tmp | ||