diff options
author | netblue30 <netblue30@protonmail.com> | 2022-06-03 06:53:30 -0400 |
---|---|---|
committer | GitHub <noreply@github.com> | 2022-06-03 06:53:30 -0400 |
commit | 37ac02d4781719f5aef4a3b904ac87d9a5e196b2 (patch) | |
tree | c800a1e6d49096de48f09e78f8276494513ca176 | |
parent | fixes (diff) | |
parent | disable-shell.inc: add global shell paths from ids.config (diff) | |
download | firejail-37ac02d4781719f5aef4a3b904ac87d9a5e196b2.tar.gz firejail-37ac02d4781719f5aef4a3b904ac87d9a5e196b2.tar.zst firejail-37ac02d4781719f5aef4a3b904ac87d9a5e196b2.zip |
Merge pull request #5172 from kmk3/ds-add-ids-paths
disable-shell.inc: add global shell paths from ids.config
-rw-r--r-- | etc/ids.config | 3 | ||||
-rw-r--r-- | etc/inc/disable-shell.inc | 30 |
2 files changed, 32 insertions, 1 deletions
diff --git a/etc/ids.config b/etc/ids.config index 6c1aa543b..1217d4a3a 100644 --- a/etc/ids.config +++ b/etc/ids.config | |||
@@ -58,6 +58,7 @@ ${HOME}/.zshenv | |||
58 | ${HOME}/.zshprofile | 58 | ${HOME}/.zshprofile |
59 | ${HOME}/.zshrc | 59 | ${HOME}/.zshrc |
60 | 60 | ||
61 | # Note: This list should be kept in sync with the one in inc/disable-shell.inc. | ||
61 | ### shells global ### | 62 | ### shells global ### |
62 | # all | 63 | # all |
63 | /etc/dircolors | 64 | /etc/dircolors |
@@ -68,8 +69,8 @@ ${HOME}/.zshrc | |||
68 | /etc/skel | 69 | /etc/skel |
69 | # bash | 70 | # bash |
70 | /etc/bash | 71 | /etc/bash |
71 | /etc/bash_completion* | ||
72 | /etc/bash.bashrc | 72 | /etc/bash.bashrc |
73 | /etc/bash_completion* | ||
73 | /etc/bashrc | 74 | /etc/bashrc |
74 | # fish | 75 | # fish |
75 | /etc/fish | 76 | /etc/fish |
diff --git a/etc/inc/disable-shell.inc b/etc/inc/disable-shell.inc index 3f19cdcf9..b1bfcd161 100644 --- a/etc/inc/disable-shell.inc +++ b/etc/inc/disable-shell.inc | |||
@@ -13,5 +13,35 @@ blacklist ${PATH}/sh | |||
13 | blacklist ${PATH}/tclsh | 13 | blacklist ${PATH}/tclsh |
14 | blacklist ${PATH}/tcsh | 14 | blacklist ${PATH}/tcsh |
15 | blacklist ${PATH}/zsh | 15 | blacklist ${PATH}/zsh |
16 | |||
17 | # Note: This list should be kept in sync with the one in ../ids.config. | ||
18 | ### shells global ### | ||
19 | # all | ||
20 | blacklist /etc/dircolors | ||
21 | blacklist /etc/environment | ||
16 | blacklist /etc/profile | 22 | blacklist /etc/profile |
17 | blacklist /etc/profile.d | 23 | blacklist /etc/profile.d |
24 | blacklist /etc/shells | ||
25 | blacklist /etc/skel | ||
26 | # bash | ||
27 | blacklist /etc/bash | ||
28 | blacklist /etc/bash.bashrc | ||
29 | blacklist /etc/bash_completion* | ||
30 | blacklist /etc/bashrc | ||
31 | # fish | ||
32 | blacklist /etc/fish | ||
33 | # ksh | ||
34 | blacklist /etc/ksh.kshrc | ||
35 | blacklist /etc/suid_profile | ||
36 | # tcsh | ||
37 | blacklist /etc/complete.tcsh | ||
38 | blacklist /etc/csh.cshrc | ||
39 | blacklist /etc/csh.login | ||
40 | blacklist /etc/csh.logout | ||
41 | # zsh | ||
42 | blacklist /etc/zlogin | ||
43 | blacklist /etc/zlogout | ||
44 | blacklist /etc/zprofile | ||
45 | blacklist /etc/zsh | ||
46 | blacklist /etc/zshenv | ||
47 | blacklist /etc/zshrc | ||