diff options
author | rusty-snake <print_hello_world+Public@protonmail.com> | 2019-06-16 13:04:28 +0200 |
---|---|---|
committer | rusty-snake <print_hello_world+Public@protonmail.com> | 2019-06-16 13:04:28 +0200 |
commit | 4c935269605f9b53578b66b9d9c5596ccb886f0d (patch) | |
tree | a33b75b9d60169b5278cd66473db5a8ee30e3ea4 /etc/digikam.profile | |
parent | Sort comented private-{bin,etc} lines (diff) | |
download | firejail-4c935269605f9b53578b66b9d9c5596ccb886f0d.tar.gz firejail-4c935269605f9b53578b66b9d9c5596ccb886f0d.tar.zst firejail-4c935269605f9b53578b66b9d9c5596ccb886f0d.zip |
many profile cleanup (4)
containing:
- files forgotten in 4beaf8f9
- workarounds for #903
- commented useless private-etc lines removed
- remove commented seccomp.keep lines
- much more
Diffstat (limited to 'etc/digikam.profile')
-rw-r--r-- | etc/digikam.profile | 5 |
1 files changed, 1 insertions, 4 deletions
diff --git a/etc/digikam.profile b/etc/digikam.profile index e9c89a1b9..1b80981f7 100644 --- a/etc/digikam.profile +++ b/etc/digikam.profile | |||
@@ -33,11 +33,8 @@ noroot | |||
33 | notv | 33 | notv |
34 | protocol unix,inet,inet6,netlink | 34 | protocol unix,inet,inet6,netlink |
35 | seccomp | 35 | seccomp |
36 | # seccomp.keep fallocate,getrusage,openat,access,arch_prctl,bind,brk,chdir,chmod,clock_getres,clone,close,connect,dup2,dup3,eventfd2,execve,fadvise64,fcntl,fdatasync,flock,fstat,fstatfs,ftruncate,futex,getcwd,getdents,getegid,geteuid,getgid,getpeername,getpgrp,getpid,getppid,getrandom,getresgid,getresuid,getrlimit,getsockname,getsockopt,gettid,getuid,inotify_add_watch,inotify_init,inotify_init1,inotify_rm_watch,ioctl,lseek,lstat,madvise,mbind,memfd_create,mkdir,mmap,mprotect,msync,munmap,nanosleep,open,pipe,pipe2,poll,ppoll,prctl,pread64,pwrite64,read,readlink,readlinkat,recvfrom,recvmsg,rename,rt_sigaction,rt_sigprocmask,rt_sigreturn,sched_getaffinity,sched_getparam,sched_get_priority_max,sched_get_priority_min,sched_getscheduler,sched_setscheduler,sched_yield,sendmsg,sendto,setgid,setresgid,setresuid,set_robust_list,setsid,setsockopt,set_tid_address,setuid,shmat,shmctl,shmdt,shmget,shutdown,socket,stat,statfs,sysinfo,timerfd_create,umask,uname,unlink,wait4,waitid,write,writev,fchmod,fchown,unshare,exit,exit_group | ||
37 | shell none | 36 | shell none |
38 | 37 | ||
39 | # private-bin program | ||
40 | # private-dev - prevents libdc1394 loading; this lib is used to connect to a camera device | 38 | # private-dev - prevents libdc1394 loading; this lib is used to connect to a camera device |
41 | # private-etc alternatives,ca-certificates,ssl,pki,crypto-policies | 39 | # private-etc alternatives,ca-certificates,crypto-policies,pki,ssl |
42 | private-tmp | 40 | private-tmp |
43 | |||