diff options
author | smitsohu <smitsohu@gmail.com> | 2017-08-08 21:31:50 +0200 |
---|---|---|
committer | Fred Barclay <Fred-Barclay@users.noreply.github.com> | 2017-08-08 14:31:50 -0500 |
commit | 40a51e179d90f54a20c539567adeed1ea0b94d78 (patch) | |
tree | 48f41f500a4a4cbdd1744365919dd0c2dc99931a /etc/gwenview.profile | |
parent | Merges (diff) | |
download | firejail-40a51e179d90f54a20c539567adeed1ea0b94d78.tar.gz firejail-40a51e179d90f54a20c539567adeed1ea0b94d78.tar.zst firejail-40a51e179d90f54a20c539567adeed1ea0b94d78.zip |
various little profile fixes and enhancements (#1442)
* add novideo
* add novideo
* add novideo
* put noexec last
* blacklist Clementine configuration and database
* blacklist Clementine configuration and database
* add novideo
* add novideo, permit access to ~/.java
* add novideo
* spoof machine-id
* mimeapps.list is already in whitelist-common.inc
* ~/.local/share/applications is already read-only
see disable-common.inc
* mimeapps.list is already in whitelist-common.inc
* ~/.local/share/applications is already read-only
see disable-common.inc
* drop machine-id option
private-etc hides it anyway
Diffstat (limited to 'etc/gwenview.profile')
-rw-r--r-- | etc/gwenview.profile | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/etc/gwenview.profile b/etc/gwenview.profile index 0f2be604b..0bc47d301 100644 --- a/etc/gwenview.profile +++ b/etc/gwenview.profile | |||
@@ -23,6 +23,7 @@ caps.drop all | |||
23 | nogroups | 23 | nogroups |
24 | nonewprivs | 24 | nonewprivs |
25 | noroot | 25 | noroot |
26 | novideo | ||
26 | protocol unix | 27 | protocol unix |
27 | seccomp | 28 | seccomp |
28 | shell none | 29 | shell none |