diff options
author | Tad <tad@spotco.us> | 2017-04-17 17:11:24 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2017-04-17 17:11:24 -0400 |
commit | 4f238b75de05d91f200305335da1f019810ac149 (patch) | |
tree | 40f021c8d9e7bb70f7bd0a868d571286fa438420 /etc/firefox.profile | |
parent | Merge pull request #1229 from SpotComms/firecfg2 (diff) | |
download | firejail-4f238b75de05d91f200305335da1f019810ac149.tar.gz firejail-4f238b75de05d91f200305335da1f019810ac149.tar.zst firejail-4f238b75de05d91f200305335da1f019810ac149.zip |
Harden more profiles
Diffstat (limited to 'etc/firefox.profile')
-rw-r--r-- | etc/firefox.profile | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/etc/firefox.profile b/etc/firefox.profile index 4d96c05c8..0013062a5 100644 --- a/etc/firefox.profile +++ b/etc/firefox.profile | |||
@@ -16,7 +16,9 @@ include /etc/firejail/disable-programs.inc | |||
16 | include /etc/firejail/disable-devel.inc | 16 | include /etc/firejail/disable-devel.inc |
17 | 17 | ||
18 | caps.drop all | 18 | caps.drop all |
19 | ipc-namespace | ||
19 | netfilter | 20 | netfilter |
21 | nogroups | ||
20 | nonewprivs | 22 | nonewprivs |
21 | noroot | 23 | noroot |
22 | protocol unix,inet,inet6,netlink | 24 | protocol unix,inet,inet6,netlink |