diff options
author | rusty-snake <print_hello_world+Public@protonmail.com> | 2019-06-20 12:46:24 +0200 |
---|---|---|
committer | rusty-snake <print_hello_world+Public@protonmail.com> | 2019-06-20 12:46:24 +0200 |
commit | 4429e6fcafb2558661faad9a787281cb5ce6540e (patch) | |
tree | a21f6cb0092e3c3e3d8d30991e6a5b4e4facfae8 /contrib | |
parent | add 'x11 none' to more profiles with 'net none' (diff) | |
download | firejail-4429e6fcafb2558661faad9a787281cb5ce6540e.tar.gz firejail-4429e6fcafb2558661faad9a787281cb5ce6540e.tar.zst firejail-4429e6fcafb2558661faad9a787281cb5ce6540e.zip |
Improve profile.template
* uncomment .local includes
* add options
* ##ignore noexec /tmp
* ##caps.keep CAPS
* ##hostname NAME
* ##writable-etc
* ##writable-run-user
* ##writable-var
* ##writable-var-log
* add disable x11
* x11 none
* blacklist /tmp/.X11-unix
* comment when which of the both option should be used
* sort private-etc template Common
* add comments
* machine-id: breaks sound and sometime dbus related functions
* private-bin: python should be added by 'python*'
* protocol: auxiliary comment for protocol line
* add 'packet' to protocol list
* Sections structure: OPTIONS: now has seccomp* instead of seccomp
Diffstat (limited to 'contrib')
0 files changed, 0 insertions, 0 deletions