diff options
author | startx2017 <vradu.startx@yandex.com> | 2017-10-13 10:05:38 -0400 |
---|---|---|
committer | startx2017 <vradu.startx@yandex.com> | 2017-10-13 10:05:38 -0400 |
commit | 7c2e3ebf7fd0586a7067b2c786af051bcbb39c2b (patch) | |
tree | 9677e73af46f2e1899fa57b839ea1157143950f2 | |
parent | python cleanup in profile files (diff) | |
download | firejail-7c2e3ebf7fd0586a7067b2c786af051bcbb39c2b.tar.gz firejail-7c2e3ebf7fd0586a7067b2c786af051bcbb39c2b.tar.zst firejail-7c2e3ebf7fd0586a7067b2c786af051bcbb39c2b.zip |
/bin/sh is automatically solved to /bin/dash in private-bin - removed dash from all profiles
-rw-r--r-- | etc/Viber.profile | 2 | ||||
-rw-r--r-- | etc/apktool.profile | 2 | ||||
-rw-r--r-- | etc/arm.profile | 2 | ||||
-rw-r--r-- | etc/bless.profile | 2 | ||||
-rw-r--r-- | etc/dex2jar.profile | 2 | ||||
-rw-r--r-- | etc/filezilla.profile | 2 | ||||
-rw-r--r-- | etc/google-earth.profile | 2 | ||||
-rw-r--r-- | etc/jd-gui.profile | 2 | ||||
-rw-r--r-- | etc/multimc5.profile | 2 | ||||
-rw-r--r-- | etc/pdfsam.profile | 2 | ||||
-rw-r--r-- | etc/spotify.profile | 2 | ||||
-rw-r--r-- | etc/start-tor-browser.profile | 2 | ||||
-rw-r--r-- | etc/surf.profile | 2 | ||||
-rw-r--r-- | etc/tar.profile | 2 | ||||
-rw-r--r-- | etc/torbrowser-launcher.profile | 2 | ||||
-rw-r--r-- | etc/waterfox.profile | 2 | ||||
-rw-r--r-- | etc/xonotic.profile | 2 |
17 files changed, 17 insertions, 17 deletions
diff --git a/etc/Viber.profile b/etc/Viber.profile index 03e5f1086..f5843bfd4 100644 --- a/etc/Viber.profile +++ b/etc/Viber.profile | |||
@@ -30,7 +30,7 @@ seccomp | |||
30 | shell none | 30 | shell none |
31 | 31 | ||
32 | disable-mnt | 32 | disable-mnt |
33 | private-bin sh,bash,dash,dig,awk,Viber | 33 | private-bin sh,bash,dig,awk,Viber |
34 | private-etc hosts,fonts,mailcap,resolv.conf,X11,pulse,alternatives,localtime,nsswitch.conf,ssl,proxychains.conf | 34 | private-etc hosts,fonts,mailcap,resolv.conf,X11,pulse,alternatives,localtime,nsswitch.conf,ssl,proxychains.conf |
35 | private-tmp | 35 | private-tmp |
36 | 36 | ||
diff --git a/etc/apktool.profile b/etc/apktool.profile index 650c20de7..13c8f3311 100644 --- a/etc/apktool.profile +++ b/etc/apktool.profile | |||
@@ -25,7 +25,7 @@ protocol unix | |||
25 | seccomp | 25 | seccomp |
26 | shell none | 26 | shell none |
27 | 27 | ||
28 | private-bin apktool,bash,dash,java,dirname,basename,expr,sh | 28 | private-bin apktool,bash,java,dirname,basename,expr,sh |
29 | private-dev | 29 | private-dev |
30 | 30 | ||
31 | noexec ${HOME} | 31 | noexec ${HOME} |
diff --git a/etc/arm.profile b/etc/arm.profile index 35c946722..9da8a050a 100644 --- a/etc/arm.profile +++ b/etc/arm.profile | |||
@@ -33,7 +33,7 @@ shell none | |||
33 | tracelog | 33 | tracelog |
34 | 34 | ||
35 | disable-mnt | 35 | disable-mnt |
36 | # private-bin arm,tor,sh,bash,dash,python*,ps,lsof,ldconfig | 36 | # private-bin arm,tor,sh,bash,python*,ps,lsof,ldconfig |
37 | private-dev | 37 | private-dev |
38 | private-etc tor,passwd | 38 | private-etc tor,passwd |
39 | private-tmp | 39 | private-tmp |
diff --git a/etc/bless.profile b/etc/bless.profile index 27557d9af..e4d2f0730 100644 --- a/etc/bless.profile +++ b/etc/bless.profile | |||
@@ -26,7 +26,7 @@ protocol unix | |||
26 | seccomp | 26 | seccomp |
27 | shell none | 27 | shell none |
28 | 28 | ||
29 | # private-bin bless,dash,sh,bash,mono | 29 | # private-bin bless,sh,bash,mono |
30 | private-dev | 30 | private-dev |
31 | private-etc fonts,mono | 31 | private-etc fonts,mono |
32 | private-tmp | 32 | private-tmp |
diff --git a/etc/dex2jar.profile b/etc/dex2jar.profile index bdbb10b12..5261bb865 100644 --- a/etc/dex2jar.profile +++ b/etc/dex2jar.profile | |||
@@ -26,7 +26,7 @@ protocol unix | |||
26 | seccomp | 26 | seccomp |
27 | shell none | 27 | shell none |
28 | 28 | ||
29 | private-bin dex2jar,dash,java,sh,bash,expr,dirname,ls,uname,grep | 29 | private-bin dex2jar,java,sh,bash,expr,dirname,ls,uname,grep |
30 | private-dev | 30 | private-dev |
31 | 31 | ||
32 | noexec ${HOME} | 32 | noexec ${HOME} |
diff --git a/etc/filezilla.profile b/etc/filezilla.profile index 07971578c..544c724bc 100644 --- a/etc/filezilla.profile +++ b/etc/filezilla.profile | |||
@@ -24,6 +24,6 @@ protocol unix,inet,inet6 | |||
24 | seccomp | 24 | seccomp |
25 | shell none | 25 | shell none |
26 | 26 | ||
27 | private-bin filezilla,uname,sh,bash,dash,python*,lsb_release,fzputtygen,fzsftp | 27 | private-bin filezilla,uname,sh,bash,python*,lsb_release,fzputtygen,fzsftp |
28 | private-dev | 28 | private-dev |
29 | private-tmp | 29 | private-tmp |
diff --git a/etc/google-earth.profile b/etc/google-earth.profile index b60f5b3a5..2e0d11897 100644 --- a/etc/google-earth.profile +++ b/etc/google-earth.profile | |||
@@ -41,7 +41,7 @@ protocol unix,inet,inet6 | |||
41 | seccomp | 41 | seccomp |
42 | shell none | 42 | shell none |
43 | 43 | ||
44 | private-bin google-earth,sh,bash,dash,grep,sed,ls,dirname | 44 | private-bin google-earth,sh,bash,grep,sed,ls,dirname |
45 | private-dev | 45 | private-dev |
46 | 46 | ||
47 | noexec ${HOME} | 47 | noexec ${HOME} |
diff --git a/etc/jd-gui.profile b/etc/jd-gui.profile index 0f59b5721..5cb1e1828 100644 --- a/etc/jd-gui.profile +++ b/etc/jd-gui.profile | |||
@@ -27,7 +27,7 @@ protocol unix | |||
27 | seccomp | 27 | seccomp |
28 | shell none | 28 | shell none |
29 | 29 | ||
30 | private-bin jd-gui,dash,sh,bash | 30 | private-bin jd-gui,sh,bash |
31 | private-dev | 31 | private-dev |
32 | private-tmp | 32 | private-tmp |
33 | 33 | ||
diff --git a/etc/multimc5.profile b/etc/multimc5.profile index 3423c2a88..8a70d9d36 100644 --- a/etc/multimc5.profile +++ b/etc/multimc5.profile | |||
@@ -35,7 +35,7 @@ shell none | |||
35 | 35 | ||
36 | disable-mnt | 36 | disable-mnt |
37 | # private-bin works, but causes weirdness | 37 | # private-bin works, but causes weirdness |
38 | # private-bin multimc5,dash,bash,mkdir,which,zenity,kdialog,ldd,chmod,valgrind,apt-file,pkgfile,dnf,yum,zypper,pfl,java,grep,sort,awk,readlink,dirname | 38 | # private-bin multimc5,bash,mkdir,which,zenity,kdialog,ldd,chmod,valgrind,apt-file,pkgfile,dnf,yum,zypper,pfl,java,grep,sort,awk,readlink,dirname |
39 | private-dev | 39 | private-dev |
40 | private-tmp | 40 | private-tmp |
41 | 41 | ||
diff --git a/etc/pdfsam.profile b/etc/pdfsam.profile index f1c3377d9..fd52fb9ee 100644 --- a/etc/pdfsam.profile +++ b/etc/pdfsam.profile | |||
@@ -26,7 +26,7 @@ protocol unix | |||
26 | seccomp | 26 | seccomp |
27 | shell none | 27 | shell none |
28 | 28 | ||
29 | private-bin pdfsam,dash,sh,bash,java,archlinux-java,grep,awk,dirname,uname,which,sort,find,readlink,expr,ls,java-config | 29 | private-bin pdfsam,sh,bash,java,archlinux-java,grep,awk,dirname,uname,which,sort,find,readlink,expr,ls,java-config |
30 | private-dev | 30 | private-dev |
31 | private-tmp | 31 | private-tmp |
32 | 32 | ||
diff --git a/etc/spotify.profile b/etc/spotify.profile index 3506b793b..586934ec3 100644 --- a/etc/spotify.profile +++ b/etc/spotify.profile | |||
@@ -40,7 +40,7 @@ seccomp | |||
40 | shell none | 40 | shell none |
41 | 41 | ||
42 | disable-mnt | 42 | disable-mnt |
43 | private-bin spotify,bash,sh,dash | 43 | private-bin spotify,bash,sh |
44 | private-dev | 44 | private-dev |
45 | private-etc fonts,machine-id,pulse,resolv.conf | 45 | private-etc fonts,machine-id,pulse,resolv.conf |
46 | private-opt spotify | 46 | private-opt spotify |
diff --git a/etc/start-tor-browser.profile b/etc/start-tor-browser.profile index e12a38164..57a5c20e3 100644 --- a/etc/start-tor-browser.profile +++ b/etc/start-tor-browser.profile | |||
@@ -24,7 +24,7 @@ seccomp | |||
24 | shell none | 24 | shell none |
25 | tracelog | 25 | tracelog |
26 | 26 | ||
27 | private-bin bash,dash,sh,grep,tail,env,gpg,id,readlink,dirname,test,mkdir,ln,sed,cp,rm,getconf | 27 | private-bin bash,sh,grep,tail,env,gpg,id,readlink,dirname,test,mkdir,ln,sed,cp,rm,getconf |
28 | private-dev | 28 | private-dev |
29 | private-etc fonts | 29 | private-etc fonts |
30 | private-tmp | 30 | private-tmp |
diff --git a/etc/surf.profile b/etc/surf.profile index 251331902..a12212f16 100644 --- a/etc/surf.profile +++ b/etc/surf.profile | |||
@@ -26,7 +26,7 @@ seccomp | |||
26 | shell none | 26 | shell none |
27 | tracelog | 27 | tracelog |
28 | 28 | ||
29 | private-bin ls,surf,sh,dash,bash,curl,dmenu,printf,sed,sleep,st,stterm,xargs,xprop | 29 | private-bin ls,surf,sh,bash,curl,dmenu,printf,sed,sleep,st,stterm,xargs,xprop |
30 | private-dev | 30 | private-dev |
31 | private-etc passwd,group,hosts,resolv.conf,fonts,ssl | 31 | private-etc passwd,group,hosts,resolv.conf,fonts,ssl |
32 | private-tmp | 32 | private-tmp |
diff --git a/etc/tar.profile b/etc/tar.profile index f14894c25..c8c0b2cae 100644 --- a/etc/tar.profile +++ b/etc/tar.profile | |||
@@ -20,7 +20,7 @@ shell none | |||
20 | tracelog | 20 | tracelog |
21 | 21 | ||
22 | # support compressed archives | 22 | # support compressed archives |
23 | private-bin sh,bash,dash,tar,gtar,compress,gzip,lzma,xz,bzip2,lbzip2,lzip,lzop | 23 | private-bin sh,bash,tar,gtar,compress,gzip,lzma,xz,bzip2,lbzip2,lzip,lzop |
24 | private-dev | 24 | private-dev |
25 | private-etc passwd,group,localtime | 25 | private-etc passwd,group,localtime |
26 | 26 | ||
diff --git a/etc/torbrowser-launcher.profile b/etc/torbrowser-launcher.profile index 3a46e695c..85af86068 100644 --- a/etc/torbrowser-launcher.profile +++ b/etc/torbrowser-launcher.profile | |||
@@ -32,7 +32,7 @@ seccomp | |||
32 | shell none | 32 | shell none |
33 | tracelog | 33 | tracelog |
34 | 34 | ||
35 | private-bin bash,cp,dash,dirname,env,expr,file,getconf,gpg,grep,id,ln,mkdir,python*,readlink,rm,sed,sh,tail,test,tor-browser-en,torbrowser-launcher | 35 | private-bin bash,cp,dirname,env,expr,file,getconf,gpg,grep,id,ln,mkdir,python*,readlink,rm,sed,sh,tail,test,tor-browser-en,torbrowser-launcher |
36 | private-dev | 36 | private-dev |
37 | private-etc fonts | 37 | private-etc fonts |
38 | private-tmp | 38 | private-tmp |
diff --git a/etc/waterfox.profile b/etc/waterfox.profile index 67995f345..9626c17aa 100644 --- a/etc/waterfox.profile +++ b/etc/waterfox.profile | |||
@@ -80,7 +80,7 @@ shell none | |||
80 | tracelog | 80 | tracelog |
81 | 81 | ||
82 | # waterfox requires a shell to launch on Arch. We can possibly remove sh though. | 82 | # waterfox requires a shell to launch on Arch. We can possibly remove sh though. |
83 | # private-bin waterfox,which,sh,dbus-launch,dbus-send,env,dash,bash | 83 | # private-bin waterfox,which,sh,dbus-launch,dbus-send,env,bash |
84 | private-dev | 84 | private-dev |
85 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,waterfox,mime.types,mailcap,asound.conf,pulse | 85 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,waterfox,mime.types,mailcap,asound.conf,pulse |
86 | private-tmp | 86 | private-tmp |
diff --git a/etc/xonotic.profile b/etc/xonotic.profile index 6dc62c33b..b3d45dc71 100644 --- a/etc/xonotic.profile +++ b/etc/xonotic.profile | |||
@@ -29,7 +29,7 @@ seccomp | |||
29 | shell none | 29 | shell none |
30 | 30 | ||
31 | disable-mnt | 31 | disable-mnt |
32 | private-bin bash,blind-id,darkplaces-glx,darkplaces-sdl,dash,dirname,grep,ldd,netstat,ps,readlink,sh,uname,xonotic,xonotic-glx,xonotic-linux32-dedicated,xonotic-linux32-glx,xonotic-linux32-sdl,xonotic-linux64-dedicated,xonotic-linux64-glx,xonotic-linux64-sdl,xonotic-sdl | 32 | private-bin bash,blind-id,darkplaces-glx,darkplaces-sdl,dirname,grep,ldd,netstat,ps,readlink,sh,uname,xonotic,xonotic-glx,xonotic-linux32-dedicated,xonotic-linux32-glx,xonotic-linux32-sdl,xonotic-linux64-dedicated,xonotic-linux64-glx,xonotic-linux64-sdl,xonotic-sdl |
33 | private-dev | 33 | private-dev |
34 | # private-etc breaks audio on some distros | 34 | # private-etc breaks audio on some distros |
35 | #private-etc asound.conf,ca-certificates,drirc,fonts,group,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,localtime,nsswitch.conf,passwd,pulse,resolv.conf,ssl | 35 | #private-etc asound.conf,ca-certificates,drirc,fonts,group,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,localtime,nsswitch.conf,passwd,pulse,resolv.conf,ssl |