diff options
author | smitsohu <smitsohu@gmail.com> | 2018-03-28 01:20:21 +0200 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2018-03-28 03:23:59 +0200 |
commit | 7a37dc31ab907d55eb88f2fa259f37046952a0c5 (patch) | |
tree | b6a3e76842eeb8c455e00585de0ab9fc38ef4fe0 /etc/gedit.profile | |
parent | Enable nodbus for keepassx and keepassxc profiles. (diff) | |
download | firejail-7a37dc31ab907d55eb88f2fa259f37046952a0c5.tar.gz firejail-7a37dc31ab907d55eb88f2fa259f37046952a0c5.tar.zst firejail-7a37dc31ab907d55eb88f2fa259f37046952a0c5.zip |
recalibrate dbus access, deploy nodbus option
see #1822 and #1825. also systematically replaces
'blacklist /run/user/*/bus' with 'nodbus'.
with contributions from @Fred-Barclay
Diffstat (limited to 'etc/gedit.profile')
-rw-r--r-- | etc/gedit.profile | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/etc/gedit.profile b/etc/gedit.profile index 97eb692de..5b058ae28 100644 --- a/etc/gedit.profile +++ b/etc/gedit.profile | |||
@@ -5,8 +5,6 @@ include /etc/firejail/gedit.local | |||
5 | # Persistent global definitions | 5 | # Persistent global definitions |
6 | include /etc/firejail/globals.local | 6 | include /etc/firejail/globals.local |
7 | 7 | ||
8 | # blacklist /run/user/*/bus - makes settings immutable | ||
9 | |||
10 | noblacklist ${HOME}/.config/enchant | 8 | noblacklist ${HOME}/.config/enchant |
11 | noblacklist ${HOME}/.config/gedit | 9 | noblacklist ${HOME}/.config/gedit |
12 | noblacklist ${HOME}/.gitconfig | 10 | noblacklist ${HOME}/.gitconfig |
@@ -18,10 +16,14 @@ include /etc/firejail/disable-programs.inc | |||
18 | 16 | ||
19 | include /etc/firejail/whitelist-var-common.inc | 17 | include /etc/firejail/whitelist-var-common.inc |
20 | 18 | ||
19 | # following line makes settings immutable | ||
20 | apparmor | ||
21 | caps.drop all | 21 | caps.drop all |
22 | # net none - makes settings immutable | ||
23 | machine-id | 22 | machine-id |
23 | net none | ||
24 | no3d | 24 | no3d |
25 | # following line makes settings immutable | ||
26 | nodbus | ||
25 | nodvd | 27 | nodvd |
26 | nogroups | 28 | nogroups |
27 | nonewprivs | 29 | nonewprivs |