aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar valoq <valoq@mailbox.org>2016-12-21 10:34:28 +0100
committerLibravatar valoq <valoq@mailbox.org>2016-12-21 10:34:28 +0100
commit77a97aae04c6ed92cc13779d6b4c25a5155a7315 (patch)
treef43e3847c68ccff9ec5037293f7858dc82f257e2
parenthardened various profiles (diff)
downloadfirejail-77a97aae04c6ed92cc13779d6b4c25a5155a7315.tar.gz
firejail-77a97aae04c6ed92cc13779d6b4c25a5155a7315.tar.zst
firejail-77a97aae04c6ed92cc13779d6b4c25a5155a7315.zip
profile improvements
Diffstat
-rw-r--r--etc/atool.profile3
-rw-r--r--etc/git.profile4
2 files changed, 6 insertions, 1 deletions
diff --git a/etc/atool.profile b/etc/atool.profile
index 3fbfb9fc7..578a88fc7 100644
--- a/etc/atool.profile
+++ b/etc/atool.profile
@@ -13,9 +13,12 @@ protocol unix
13seccomp 13seccomp
14netfilter 14netfilter
15net none 15net none
16no3d
16shell none 17shell none
17tracelog 18tracelog
18 19
20blacklist /tmp/.X11-unix
21
19# private-bin atool 22# private-bin atool
20private-tmp 23private-tmp
21private-dev 24private-dev
diff --git a/etc/git.profile b/etc/git.profile
index d60e58c03..80e534e20 100644
--- a/etc/git.profile
+++ b/etc/git.profile
@@ -12,15 +12,17 @@ include /etc/firejail/disable-common.inc
12include /etc/firejail/disable-programs.inc 12include /etc/firejail/disable-programs.inc
13include /etc/firejail/disable-passwdmgr.inc 13include /etc/firejail/disable-passwdmgr.inc
14 14
15
16caps.drop all 15caps.drop all
17netfilter 16netfilter
18nogroups 17nogroups
19nonewprivs 18nonewprivs
20noroot 19noroot
21nosound 20nosound
21no3d
22protocol unix,inet,inet6 22protocol unix,inet,inet6
23seccomp 23seccomp
24shell none 24shell none
25 25
26blacklist /tmp/.X11-unix
27
26private-dev 28private-dev
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-08 10:14:19 +0000