diff options
author | Tad <tad@spotco.us> | 2017-04-15 16:07:25 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2017-04-15 16:07:25 -0400 |
commit | b7d51c2df6fb62d7830bdd3a873fff618adb00dc (patch) | |
tree | b7970715f4f36fda11c39c34655fded68b354230 /etc/gedit.profile | |
parent | Harden dino (diff) | |
download | firejail-b7d51c2df6fb62d7830bdd3a873fff618adb00dc.tar.gz firejail-b7d51c2df6fb62d7830bdd3a873fff618adb00dc.tar.zst firejail-b7d51c2df6fb62d7830bdd3a873fff618adb00dc.zip |
Harden 19 more profiles
Diffstat (limited to 'etc/gedit.profile')
-rw-r--r-- | etc/gedit.profile | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/etc/gedit.profile b/etc/gedit.profile index 9f4eee9b3..07bdb1bbe 100644 --- a/etc/gedit.profile +++ b/etc/gedit.profile | |||
@@ -14,17 +14,22 @@ include /etc/firejail/disable-programs.inc | |||
14 | include /etc/firejail/disable-passwdmgr.inc | 14 | include /etc/firejail/disable-passwdmgr.inc |
15 | 15 | ||
16 | caps.drop all | 16 | caps.drop all |
17 | netfilter | ||
18 | net none | ||
19 | no3d | ||
17 | nogroups | 20 | nogroups |
18 | nonewprivs | 21 | nonewprivs |
19 | noroot | 22 | noroot |
20 | nosound | 23 | nosound |
21 | protocol unix | 24 | protocol unix |
22 | seccomp | 25 | seccomp |
23 | netfilter | ||
24 | shell none | 26 | shell none |
25 | tracelog | 27 | tracelog |
26 | 28 | ||
27 | # private-bin gedit | 29 | # private-bin gedit |
28 | private-tmp | ||
29 | private-dev | 30 | private-dev |
30 | # private-etc fonts | 31 | # private-etc fonts |
32 | private-tmp | ||
33 | |||
34 | noexec ${HOME} | ||
35 | noexec /tmp | ||