diff options
author | netblue30 <netblue30@yahoo.com> | 2017-02-19 09:55:06 -0500 |
---|---|---|
committer | GitHub <noreply@github.com> | 2017-02-19 09:55:06 -0500 |
commit | cd0c82af23e84b64323f55ad6f8f73c977a28cf0 (patch) | |
tree | f6866a3528eb115bb78e56d38d4fa4ce134d2f01 | |
parent | merge #1100 from zackw: x11=xorg testing (diff) | |
parent | Oops... typo (diff) | |
download | firejail-cd0c82af23e84b64323f55ad6f8f73c977a28cf0.tar.gz firejail-cd0c82af23e84b64323f55ad6f8f73c977a28cf0.tar.zst firejail-cd0c82af23e84b64323f55ad6f8f73c977a28cf0.zip |
Merge pull request #1106 from Fred-Barclay/keepassx-pvt_bin
Tighten keepassx
-rw-r--r-- | etc/keepassx.profile | 7 | ||||
-rw-r--r-- | etc/keepassx2.profile | 6 |
2 files changed, 9 insertions, 4 deletions
diff --git a/etc/keepassx.profile b/etc/keepassx.profile index ec6d014bf..4665f5596 100644 --- a/etc/keepassx.profile +++ b/etc/keepassx.profile | |||
@@ -13,14 +13,17 @@ include /etc/firejail/disable-devel.inc | |||
13 | include /etc/firejail/disable-passwdmgr.inc | 13 | include /etc/firejail/disable-passwdmgr.inc |
14 | 14 | ||
15 | caps.drop all | 15 | caps.drop all |
16 | net none | ||
16 | nogroups | 17 | nogroups |
17 | nonewprivs | 18 | nonewprivs |
18 | noroot | 19 | noroot |
19 | nosound | 20 | nosound |
20 | protocol unix | 21 | protocol unix |
21 | seccomp | 22 | seccomp |
22 | netfilter | ||
23 | shell none | 23 | shell none |
24 | tracelog | ||
24 | 25 | ||
26 | private-bin keepassx | ||
27 | private-etc fonts | ||
28 | private-dev | ||
25 | private-tmp | 29 | private-tmp |
26 | private-dev | ||
diff --git a/etc/keepassx2.profile b/etc/keepassx2.profile index 5bf79b891..83f93e9f7 100644 --- a/etc/keepassx2.profile +++ b/etc/keepassx2.profile | |||
@@ -13,14 +13,16 @@ include /etc/firejail/disable-devel.inc | |||
13 | include /etc/firejail/disable-passwdmgr.inc | 13 | include /etc/firejail/disable-passwdmgr.inc |
14 | 14 | ||
15 | caps.drop all | 15 | caps.drop all |
16 | net none | ||
16 | nogroups | 17 | nogroups |
17 | nonewprivs | 18 | nonewprivs |
18 | noroot | 19 | noroot |
19 | nosound | 20 | nosound |
20 | protocol unix | 21 | protocol unix |
21 | seccomp | 22 | seccomp |
22 | netfilter | ||
23 | shell none | 23 | shell none |
24 | 24 | ||
25 | private-bin keepassx2 | ||
26 | private-etc fonts | ||
27 | private-dev | ||
25 | private-tmp | 28 | private-tmp |
26 | private-dev | ||