diff options
author | netblue30 <netblue30@yahoo.com> | 2016-05-26 09:08:28 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-05-26 09:08:28 -0400 |
commit | 45e9e20da370188a8ff8241313c54921d581fbd9 (patch) | |
tree | 8e22c2382f03ac2156e46fac5e7bb8f192f0a6f4 /etc/aweather.profile | |
parent | Merge pull request #537 from KellerFuchs/restricted-netfilter (diff) | |
parent | profiles: Add nonewprivs where sensible (diff) | |
download | firejail-45e9e20da370188a8ff8241313c54921d581fbd9.tar.gz firejail-45e9e20da370188a8ff8241313c54921d581fbd9.tar.zst firejail-45e9e20da370188a8ff8241313c54921d581fbd9.zip |
Merge pull request #538 from KellerFuchs/no_new_profiles
Extend profiles to use the new `nonewprivs` feature
Diffstat (limited to 'etc/aweather.profile')
-rw-r--r-- | etc/aweather.profile | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/etc/aweather.profile b/etc/aweather.profile index d7f510a7e..dd508e736 100644 --- a/etc/aweather.profile +++ b/etc/aweather.profile | |||
@@ -12,6 +12,7 @@ include /etc/firejail/disable-programs.inc | |||
12 | # Call these options | 12 | # Call these options |
13 | caps.drop all | 13 | caps.drop all |
14 | netfilter | 14 | netfilter |
15 | nonewprivs | ||
15 | noroot | 16 | noroot |
16 | protocol unix,inet,inet6,netlink | 17 | protocol unix,inet,inet6,netlink |
17 | seccomp | 18 | seccomp |