diff options
author | Jose Riha <jose1711@gmail.com> | 2019-06-11 15:59:58 +0200 |
---|---|---|
committer | rusty-snake <print_hello_world+Public@protonmail.com> | 2019-06-11 13:59:58 +0000 |
commit | ffbcae984db4fc4fdcd734502638d03c1ddf56f1 (patch) | |
tree | 6781b8ccd681f995b42f26d6db408b09d9f6453c /etc/disable-common.inc | |
parent | template profile: update private-etc templates (#2745) (diff) | |
download | firejail-ffbcae984db4fc4fdcd734502638d03c1ddf56f1.tar.gz firejail-ffbcae984db4fc4fdcd734502638d03c1ddf56f1.tar.zst firejail-ffbcae984db4fc4fdcd734502638d03c1ddf56f1.zip |
Add davfs2 secrets file to blacklist (#2753)
The files holds credentials to WebDAV servers in plaintext
hence it's probably a good idea to limit access to them.
Diffstat (limited to 'etc/disable-common.inc')
-rw-r--r-- | etc/disable-common.inc | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/etc/disable-common.inc b/etc/disable-common.inc index 9d9be1426..b3d4b710a 100644 --- a/etc/disable-common.inc +++ b/etc/disable-common.inc | |||
@@ -294,6 +294,7 @@ blacklist ${HOME}/.Private | |||
294 | blacklist ${HOME}/.caff | 294 | blacklist ${HOME}/.caff |
295 | blacklist ${HOME}/.cert | 295 | blacklist ${HOME}/.cert |
296 | blacklist ${HOME}/.config/keybase | 296 | blacklist ${HOME}/.config/keybase |
297 | blacklist ${HOME}/.davfs2/secrets | ||
297 | blacklist ${HOME}/.ecryptfs | 298 | blacklist ${HOME}/.ecryptfs |
298 | blacklist ${HOME}/.fetchmailrc | 299 | blacklist ${HOME}/.fetchmailrc |
299 | blacklist ${HOME}/.gnome2/keyrings | 300 | blacklist ${HOME}/.gnome2/keyrings |
@@ -313,6 +314,7 @@ blacklist ${HOME}/.local/share/pki | |||
313 | blacklist ${HOME}/.smbcredentials | 314 | blacklist ${HOME}/.smbcredentials |
314 | blacklist ${HOME}/.ssh | 315 | blacklist ${HOME}/.ssh |
315 | blacklist ${HOME}/.vaults | 316 | blacklist ${HOME}/.vaults |
317 | blacklist /etc/davfs2/secrets | ||
316 | blacklist /etc/group+ | 318 | blacklist /etc/group+ |
317 | blacklist /etc/group- | 319 | blacklist /etc/group- |
318 | blacklist /etc/gshadow | 320 | blacklist /etc/gshadow |