summaryrefslogtreecommitdiffstats
path: root/etc/gnome-calculator.profile
diff options
context:
space:
mode:
authorLibravatar glitsj16 <glitsj16@users.noreply.github.com>2019-02-24 21:36:41 +0000
committerLibravatar GitHub <noreply@github.com>2019-02-24 21:36:41 +0000
commit223131c24f5dcfe3c362c8e214f3fae2bca8b4b8 (patch)
treebfca7f1f090700b086e21f8894802f2bf6826879 /etc/gnome-calculator.profile
parentHarden git.profile (#2459) (diff)
downloadfirejail-223131c24f5dcfe3c362c8e214f3fae2bca8b4b8.tar.gz
firejail-223131c24f5dcfe3c362c8e214f3fae2bca8b4b8.tar.zst
firejail-223131c24f5dcfe3c362c8e214f3fae2bca8b4b8.zip
Harden gnome-calculator.profile (#2460)
Diffstat (limited to 'etc/gnome-calculator.profile')
-rw-r--r--etc/gnome-calculator.profile6
1 files changed, 4 insertions, 2 deletions
diff --git a/etc/gnome-calculator.profile b/etc/gnome-calculator.profile
index be4b0c03f..8c1682291 100644
--- a/etc/gnome-calculator.profile
+++ b/etc/gnome-calculator.profile
@@ -17,8 +17,10 @@ include disable-xdg.inc
17include whitelist-common.inc 17include whitelist-common.inc
18include whitelist-var-common.inc 18include whitelist-var-common.inc
19 19
20# apparmor - makes settings immutable 20apparmor
21caps.drop all 21caps.drop all
22ipc-namespace
23machine-id
22# net none 24# net none
23netfilter 25netfilter
24no3d 26no3d
@@ -42,6 +44,6 @@ private-dev
42private-lib gdk-pixbuf-2.*,gio,girepository-1.*,gvfs,libgconf-2.so.*,libgnutls.so.*,libproxy.so.*,librsvg-2.so.*,libxml2.so.* 44private-lib gdk-pixbuf-2.*,gio,girepository-1.*,gvfs,libgconf-2.so.*,libgnutls.so.*,libproxy.so.*,librsvg-2.so.*,libxml2.so.*
43private-tmp 45private-tmp
44 46
45#memory-deny-write-execute - breaks on Arch 47memory-deny-write-execute
46noexec ${HOME} 48noexec ${HOME}
47noexec /tmp 49noexec /tmp
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-20 01:00:43 +0000