aboutsummaryrefslogtreecommitdiffstats
path: root/etc/atool.profile
diff options
context:
space:
mode:
authorLibravatar Fred Barclay <Fred-Barclay@users.noreply.github.com>2017-08-02 09:37:20 -0500
committerLibravatar GitHub <noreply@github.com>2017-08-02 09:37:20 -0500
commitcaaac4417bd9b4116681c96fa1127b3f78c33d1d (patch)
tree0c1fd52865432943dff536a7679408bec47df683 /etc/atool.profile
parentget_mempolicy syscall was temporarily removed from the default seccomp list. ... (diff)
parentFixes (diff)
downloadfirejail-caaac4417bd9b4116681c96fa1127b3f78c33d1d.tar.gz
firejail-caaac4417bd9b4116681c96fa1127b3f78c33d1d.tar.zst
firejail-caaac4417bd9b4116681c96fa1127b3f78c33d1d.zip
Merge pull request #1367 from SpotComms/mh
Harden profiles
Diffstat (limited to 'etc/atool.profile')
-rw-r--r--etc/atool.profile3
1 files changed, 1 insertions, 2 deletions
diff --git a/etc/atool.profile b/etc/atool.profile
index a66b4b1c5..49637aa21 100644
--- a/etc/atool.profile
+++ b/etc/atool.profile
@@ -12,6 +12,7 @@ include /etc/firejail/disable-programs.inc
12include /etc/firejail/disable-passwdmgr.inc 12include /etc/firejail/disable-passwdmgr.inc
13 13
14caps.drop all 14caps.drop all
15netfilter
15nogroups 16nogroups
16nonewprivs 17nonewprivs
17noroot 18noroot
@@ -19,8 +20,6 @@ nosound
19novideo 20novideo
20protocol unix 21protocol unix
21seccomp 22seccomp
22netfilter
23net none
24no3d 23no3d
25shell none 24shell none
26tracelog 25tracelog
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-08-18 11:40:04 +0000