diff options
author | Tad <tad@spotco.us> | 2018-03-18 21:35:55 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2018-03-18 21:35:55 -0400 |
commit | 5018a209d23e7f7e7dae2a93b3b57a40e5e3a980 (patch) | |
tree | 5da1d145515595c1ee94bd1ef13d090fb8bfaa82 /etc/frozen-bubble.profile | |
parent | typo (diff) | |
download | firejail-5018a209d23e7f7e7dae2a93b3b57a40e5e3a980.tar.gz firejail-5018a209d23e7f7e7dae2a93b3b57a40e5e3a980.tar.zst firejail-5018a209d23e7f7e7dae2a93b3b57a40e5e3a980.zip |
Misc profile hardening and fixes
Diffstat (limited to 'etc/frozen-bubble.profile')
-rw-r--r-- | etc/frozen-bubble.profile | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/etc/frozen-bubble.profile b/etc/frozen-bubble.profile index 0660137e0..ca38ed1b8 100644 --- a/etc/frozen-bubble.profile +++ b/etc/frozen-bubble.profile | |||
@@ -10,6 +10,7 @@ blacklist /run/user/*/bus | |||
10 | noblacklist ${HOME}/.frozen-bubble | 10 | noblacklist ${HOME}/.frozen-bubble |
11 | 11 | ||
12 | include /etc/firejail/disable-common.inc | 12 | include /etc/firejail/disable-common.inc |
13 | include /etc/firejail/disable-devel.inc | ||
13 | include /etc/firejail/disable-passwdmgr.inc | 14 | include /etc/firejail/disable-passwdmgr.inc |
14 | include /etc/firejail/disable-programs.inc | 15 | include /etc/firejail/disable-programs.inc |
15 | 16 | ||
@@ -29,6 +30,7 @@ protocol unix,netlink | |||
29 | seccomp | 30 | seccomp |
30 | shell none | 31 | shell none |
31 | 32 | ||
33 | disable-mnt | ||
32 | # private-bin frozen-bubble | 34 | # private-bin frozen-bubble |
33 | private-dev | 35 | private-dev |
34 | # private-etc none | 36 | # private-etc none |