diff options
author | Tad <tad@spotco.us> | 2017-09-16 14:11:43 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2017-09-18 18:24:13 -0400 |
commit | 3c3602fe4e747f3489c917f4de991c9043df9751 (patch) | |
tree | 052baee1387ce11b9ecd00e49a7c96d59f92d480 /etc/fetchmail.profile | |
parent | Fixup 36 profiles (diff) | |
download | firejail-3c3602fe4e747f3489c917f4de991c9043df9751.tar.gz firejail-3c3602fe4e747f3489c917f4de991c9043df9751.tar.zst firejail-3c3602fe4e747f3489c917f4de991c9043df9751.zip |
Harden 25 profiles
Diffstat (limited to 'etc/fetchmail.profile')
-rw-r--r-- | etc/fetchmail.profile | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/etc/fetchmail.profile b/etc/fetchmail.profile index 2b2be4c16..9ee59f453 100644 --- a/etc/fetchmail.profile +++ b/etc/fetchmail.profile | |||
@@ -12,11 +12,18 @@ include /etc/firejail/disable-passwdmgr.inc | |||
12 | include /etc/firejail/disable-programs.inc | 12 | include /etc/firejail/disable-programs.inc |
13 | 13 | ||
14 | caps.drop all | 14 | caps.drop all |
15 | netfilter | ||
16 | no3d | ||
17 | nodvd | ||
15 | nogroups | 18 | nogroups |
19 | nonewprivs | ||
16 | noroot | 20 | noroot |
17 | nosound | 21 | nosound |
22 | notv | ||
23 | novideo | ||
24 | protocol unix,inet,inet6 | ||
18 | seccomp | 25 | seccomp |
26 | shell none | ||
19 | 27 | ||
20 | # private-bin fetchmail,procmail,bash,chmod | 28 | # private-bin fetchmail,procmail,bash,chmod |
21 | private-dev | 29 | private-dev |
22 | # private-etc passwd,hosts,resolv.conf | ||