diff options
author | netblue30 <netblue30@yahoo.com> | 2020-03-18 22:17:59 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2020-03-18 22:17:59 -0400 |
commit | 3c555a6ca44323c846d958e9ad5dcda540a25e95 (patch) | |
tree | 88789ef47c8cf60290c1f5bd33e89aba575626d2 /etc/disable-common.inc | |
parent | profile fixes (diff) | |
download | firejail-3c555a6ca44323c846d958e9ad5dcda540a25e95.tar.gz firejail-3c555a6ca44323c846d958e9ad5dcda540a25e95.tar.zst firejail-3c555a6ca44323c846d958e9ad5dcda540a25e95.zip |
nslookup, host profiles
Diffstat (limited to 'etc/disable-common.inc')
-rw-r--r-- | etc/disable-common.inc | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/etc/disable-common.inc b/etc/disable-common.inc index 6f9149dee..6ff83964d 100644 --- a/etc/disable-common.inc +++ b/etc/disable-common.inc | |||
@@ -469,3 +469,18 @@ blacklist ${HOME}/sent | |||
469 | 469 | ||
470 | # kernel configuration | 470 | # kernel configuration |
471 | blacklist /proc/config.gz | 471 | blacklist /proc/config.gz |
472 | |||
473 | # prevent DNS malware attempting to communicate with the server | ||
474 | # using regular DNS tools | ||
475 | blacklist ${PATH}/dig | ||
476 | blacklist ${PATH}/kdig | ||
477 | blacklist ${PATH}/nslookup | ||
478 | blacklist ${PATH}/host | ||
479 | blacklist ${PATH}/dlint | ||
480 | blacklist ${PATH}/dnswalk | ||
481 | blacklist ${PATH}/dns2tcp | ||
482 | blacklist ${PATH}/iodine | ||
483 | blacklist ${PATH}/knsupdate | ||
484 | |||
485 | |||
486 | |||