diff options
author | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-08-17 09:18:20 +1000 |
---|---|---|
committer | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-08-17 09:18:20 +1000 |
commit | 0773b2791af79418572373ac8297bea6060d65a9 (patch) | |
tree | cb79fb745f2667abaf638fbcfa407b950d33f3ee /etc/gnome-mplayer.profile | |
parent | overlay etc. (diff) | |
download | firejail-0773b2791af79418572373ac8297bea6060d65a9.tar.gz firejail-0773b2791af79418572373ac8297bea6060d65a9.tar.zst firejail-0773b2791af79418572373ac8297bea6060d65a9.zip |
tightened profiles
Diffstat (limited to 'etc/gnome-mplayer.profile')
-rw-r--r-- | etc/gnome-mplayer.profile | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/etc/gnome-mplayer.profile b/etc/gnome-mplayer.profile index 1caea177d..1b0fc9807 100644 --- a/etc/gnome-mplayer.profile +++ b/etc/gnome-mplayer.profile | |||
@@ -5,10 +5,13 @@ include /etc/firejail/disable-devel.inc | |||
5 | include /etc/firejail/disable-passwdmgr.inc | 5 | include /etc/firejail/disable-passwdmgr.inc |
6 | 6 | ||
7 | caps.drop all | 7 | caps.drop all |
8 | nogroups | ||
8 | nonewprivs | 9 | nonewprivs |
9 | noroot | 10 | noroot |
10 | protocol unix,inet,inet6 | 11 | protocol unix,inet,inet6 |
11 | seccomp | 12 | seccomp |
12 | |||
13 | shell none | 13 | shell none |
14 | |||
14 | private-bin gnome-mplayer | 15 | private-bin gnome-mplayer |
16 | private-dev | ||
17 | private-tmp | ||