aboutsummaryrefslogtreecommitdiffstats
path: root/etc/cpio.profile
diff options
context:
space:
mode:
authorLibravatar Fred Barclay <Fred-Barclay@users.noreply.github.com>2020-04-07 16:14:25 -0500
committerLibravatar Fred Barclay <Fred-Barclay@users.noreply.github.com>2020-04-07 16:14:25 -0500
commit3848b98961614e1776b29ecfb76ef4c750b6b25f (patch)
tree3c7f0b623978562ee23fba7f52b6a039571cebea /etc/cpio.profile
parentdbus-proxy (gnome_games) (diff)
downloadfirejail-3848b98961614e1776b29ecfb76ef4c750b6b25f.tar.gz
firejail-3848b98961614e1776b29ecfb76ef4c750b6b25f.tar.zst
firejail-3848b98961614e1776b29ecfb76ef4c750b6b25f.zip
Replace `nodbus` with dbus-* filters
See - 07fac581f6b9b5ed068f4c54a9521b51826375c5 for new dbus filters - https://github.com/netblue30/firejail/pull/3326#issuecomment-610423183 Except for ocenaudio, access/restrictions on dbus options should be unchanged Ocenaudio profile: dbus filters were sandboxed (initially `nodbus` was enabled) since comments indicated blocking dbus meant preferences were broken
Diffstat (limited to 'etc/cpio.profile')
-rw-r--r--etc/cpio.profile4
1 files changed, 3 insertions, 1 deletions
diff --git a/etc/cpio.profile b/etc/cpio.profile
index 1156b7439..087a5b2bb 100644
--- a/etc/cpio.profile
+++ b/etc/cpio.profile
@@ -25,7 +25,6 @@ ipc-namespace
25machine-id 25machine-id
26net none 26net none
27no3d 27no3d
28nodbus
29nodvd 28nodvd
30nogroups 29nogroups
31nonewprivs 30nonewprivs
@@ -41,4 +40,7 @@ x11 none
41private-cache 40private-cache
42private-dev 41private-dev
43 42
43dbus-user none
44dbus-system none
45
44memory-deny-write-execute 46memory-deny-write-execute
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-25 11:14:08 +0000