diff options
| author |  Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2019-02-17 15:14:04 -0600 |
|---|---|---|
| committer | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2019-02-17 15:14:04 -0600 |
| commit | 3e1ffebfe3e36dee772649a5eaf81bdb695a5ce9 (patch) | |
| tree | 3c350e17291680311cf136e29ca1f66c3570c189 | |
| parent | Add alternatives to private-etc for profiles in etc/ (diff) | |
| download | firejail-3e1ffebfe3e36dee772649a5eaf81bdb695a5ce9.tar.gz firejail-3e1ffebfe3e36dee772649a5eaf81bdb695a5ce9.tar.zst firejail-3e1ffebfe3e36dee772649a5eaf81bdb695a5ce9.zip | |
Fixes from review of 2415
| -rw-r--r-- | etc/display.profile | 3 | ||||
| -rw-r--r-- | etc/firefox.profile | 2 | ||||
| -rw-r--r-- | etc/ping.profile | 2 |
3 files changed, 4 insertions, 3 deletions
diff --git a/etc/display.profile b/etc/display.profile index 7e4263d2e..ff19365ad 100644 --- a/etc/display.profile +++ b/etc/display.profile | |||
| @@ -39,5 +39,6 @@ shell none | |||
| 39 | 39 | ||
| 40 | private-bin display,python* | 40 | private-bin display,python* |
| 41 | private-dev | 41 | private-dev |
| 42 | # private-etc alternatives - on Debian-based systems display is a symlink in /etc/alternatives | 42 | # On Debian-based systems, display is a symlink in /etc/alternatives |
| 43 | private-etc alternatives | ||
| 43 | private-tmp | 44 | private-tmp |
diff --git a/etc/firefox.profile b/etc/firefox.profile index 2861a91b4..830bbc6a7 100644 --- a/etc/firefox.profile +++ b/etc/firefox.profile | |||
| @@ -17,7 +17,7 @@ whitelist ${HOME}/.mozilla | |||
| 17 | # firefox requires a shell to launch on Arch. | 17 | # firefox requires a shell to launch on Arch. |
| 18 | #private-bin firefox,which,sh,dbus-launch,dbus-send,env,bash | 18 | #private-bin firefox,which,sh,dbus-launch,dbus-send,env,bash |
| 19 | # private-etc must first be enabled in firefox-common.profile | 19 | # private-etc must first be enabled in firefox-common.profile |
| 20 | #private-etc alternatives,firefox | 20 | #private-etc firefox |
| 21 | 21 | ||
| 22 | # Redirect | 22 | # Redirect |
| 23 | include firefox-common.profile | 23 | include firefox-common.profile |
diff --git a/etc/ping.profile b/etc/ping.profile index 373b8a918..bdd29c1a1 100644 --- a/etc/ping.profile +++ b/etc/ping.profile | |||
| @@ -41,7 +41,7 @@ private | |||
| 41 | #private-bin has mammoth problems with execvp: "No such file or directory" | 41 | #private-bin has mammoth problems with execvp: "No such file or directory" |
| 42 | private-dev | 42 | private-dev |
| 43 | # /etc/hosts is required in private-etc; however, just adding it to the list doesn't solve the problem! | 43 | # /etc/hosts is required in private-etc; however, just adding it to the list doesn't solve the problem! |
| 44 | #private-etc alternatives,resolv.conf,hosts,ca-certificates,ssl,pki,crypto-policies | 44 | #private-etc resolv.conf,hosts,ca-certificates,ssl,pki,crypto-policies |
| 45 | private-tmp | 45 | private-tmp |
| 46 | 46 | ||
| 47 | # memory-deny-write-execute is built using seccomp; nonewprivs will kill it | 47 | # memory-deny-write-execute is built using seccomp; nonewprivs will kill it |