diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2019-02-24 21:36:41 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-02-24 21:36:41 +0000 |
commit | 223131c24f5dcfe3c362c8e214f3fae2bca8b4b8 (patch) | |
tree | bfca7f1f090700b086e21f8894802f2bf6826879 /etc/gnome-calculator.profile | |
parent | Harden git.profile (#2459) (diff) | |
download | firejail-223131c24f5dcfe3c362c8e214f3fae2bca8b4b8.tar.gz firejail-223131c24f5dcfe3c362c8e214f3fae2bca8b4b8.tar.zst firejail-223131c24f5dcfe3c362c8e214f3fae2bca8b4b8.zip |
Harden gnome-calculator.profile (#2460)
Diffstat (limited to 'etc/gnome-calculator.profile')
-rw-r--r-- | etc/gnome-calculator.profile | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/etc/gnome-calculator.profile b/etc/gnome-calculator.profile index be4b0c03f..8c1682291 100644 --- a/etc/gnome-calculator.profile +++ b/etc/gnome-calculator.profile | |||
@@ -17,8 +17,10 @@ include disable-xdg.inc | |||
17 | include whitelist-common.inc | 17 | include whitelist-common.inc |
18 | include whitelist-var-common.inc | 18 | include whitelist-var-common.inc |
19 | 19 | ||
20 | # apparmor - makes settings immutable | 20 | apparmor |
21 | caps.drop all | 21 | caps.drop all |
22 | ipc-namespace | ||
23 | machine-id | ||
22 | # net none | 24 | # net none |
23 | netfilter | 25 | netfilter |
24 | no3d | 26 | no3d |
@@ -42,6 +44,6 @@ private-dev | |||
42 | private-lib gdk-pixbuf-2.*,gio,girepository-1.*,gvfs,libgconf-2.so.*,libgnutls.so.*,libproxy.so.*,librsvg-2.so.*,libxml2.so.* | 44 | private-lib gdk-pixbuf-2.*,gio,girepository-1.*,gvfs,libgconf-2.so.*,libgnutls.so.*,libproxy.so.*,librsvg-2.so.*,libxml2.so.* |
43 | private-tmp | 45 | private-tmp |
44 | 46 | ||
45 | #memory-deny-write-execute - breaks on Arch | 47 | memory-deny-write-execute |
46 | noexec ${HOME} | 48 | noexec ${HOME} |
47 | noexec /tmp | 49 | noexec /tmp |