aboutsummaryrefslogtreecommitdiffstats
path: root/etc/corebird.profile
diff options
context:
space:
mode:
authorLibravatar smitsohu <smitsohu@gmail.com>2017-09-21 16:27:39 +0200
committerLibravatar smitsohu <smitsohu@gmail.com>2017-09-21 16:27:39 +0200
commit1edc42036e632de5c5e620bbb5044d932e0d37c4 (patch)
treee67e350dcc885afd691c6e9cfe944dd44da5c30b /etc/corebird.profile
parentadded ffmpeg.profile, removed ssh-agent from firecfg (diff)
downloadfirejail-1edc42036e632de5c5e620bbb5044d932e0d37c4.tar.gz
firejail-1edc42036e632de5c5e620bbb5044d932e0d37c4.tar.zst
firejail-1edc42036e632de5c5e620bbb5044d932e0d37c4.zip
harden corebird
Diffstat (limited to 'etc/corebird.profile')
-rw-r--r--etc/corebird.profile14
1 files changed, 14 insertions, 0 deletions
diff --git a/etc/corebird.profile b/etc/corebird.profile
index 87f7a970b..99a3335ef 100644
--- a/etc/corebird.profile
+++ b/etc/corebird.profile
@@ -5,16 +5,30 @@ include /etc/firejail/corebird.local
5# Persistent global definitions 5# Persistent global definitions
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist ~/.config/corebird
8 9
9include /etc/firejail/disable-common.inc 10include /etc/firejail/disable-common.inc
10include /etc/firejail/disable-devel.inc 11include /etc/firejail/disable-devel.inc
11include /etc/firejail/disable-passwdmgr.inc 12include /etc/firejail/disable-passwdmgr.inc
12include /etc/firejail/disable-programs.inc 13include /etc/firejail/disable-programs.inc
13 14
15include /etc/firejail/whitelist-var-common.inc
16
14caps.drop all 17caps.drop all
15netfilter 18netfilter
16nodvd 19nodvd
20nogroups
21nonewprivs
17noroot 22noroot
18notv 23notv
24novideo
19protocol unix,inet,inet6 25protocol unix,inet,inet6
20seccomp 26seccomp
27shell none
28
29private-bin corebird
30private-dev
31private-tmp
32
33noexec ${HOME}
34noexec /tmp
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-19 06:02:50 +0000