diff options
author | smitsohu <smitsohu@gmail.com> | 2017-10-22 11:34:51 +0200 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2017-10-22 11:34:51 +0200 |
commit | 55938d07a58d29ceb893e4554a4ddf3c41810fc9 (patch) | |
tree | 1bfdbb2880816c44afcc524d55ab38e27c995e38 /etc/catfish.profile | |
parent | fix baloo_file (diff) | |
download | firejail-55938d07a58d29ceb893e4554a4ddf3c41810fc9.tar.gz firejail-55938d07a58d29ceb893e4554a4ddf3c41810fc9.tar.zst firejail-55938d07a58d29ceb893e4554a4ddf3c41810fc9.zip |
disable non-abstract session bus address
systematically blacklist /run/user/*/bus in all profiles with
'net none'. targets distros like Fedora
Diffstat (limited to 'etc/catfish.profile')
-rw-r--r-- | etc/catfish.profile | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/etc/catfish.profile b/etc/catfish.profile index 45aa6c35c..139951680 100644 --- a/etc/catfish.profile +++ b/etc/catfish.profile | |||
@@ -7,7 +7,11 @@ include /etc/firejail/globals.local | |||
7 | 7 | ||
8 | # We can't blacklist much since catfish | 8 | # We can't blacklist much since catfish |
9 | # is for finding files/content | 9 | # is for finding files/content |
10 | |||
11 | blacklist /run/user/*/bus | ||
12 | |||
10 | noblacklist ~/.config/catfish | 13 | noblacklist ~/.config/catfish |
14 | |||
11 | include /etc/firejail/disable-common.inc | 15 | include /etc/firejail/disable-common.inc |
12 | # include /etc/firejail/disable-devel.inc | 16 | # include /etc/firejail/disable-devel.inc |
13 | include /etc/firejail/disable-passwdmgr.inc | 17 | include /etc/firejail/disable-passwdmgr.inc |