diff options
| author |  netblue30 <netblue30@yahoo.com> | 2016-08-17 08:19:48 -0400 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2016-08-17 08:19:48 -0400 |
| commit | a8f6dd64047b7359d184f2c7d698b5a5a7837104 (patch) | |
| tree | cb79fb745f2667abaf638fbcfa407b950d33f3ee /etc/hedgewars.profile | |
| parent | overlay etc. (diff) | |
| parent | tightened profiles (diff) | |
| download | firejail-a8f6dd64047b7359d184f2c7d698b5a5a7837104.tar.gz firejail-a8f6dd64047b7359d184f2c7d698b5a5a7837104.tar.zst firejail-a8f6dd64047b7359d184f2c7d698b5a5a7837104.zip | |
Merge pull request #722 from Fred-Barclay/tighten
tightened profiles
Diffstat (limited to 'etc/hedgewars.profile')
| -rw-r--r-- | etc/hedgewars.profile | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/etc/hedgewars.profile b/etc/hedgewars.profile index c5d863bd5..7910b7eb0 100644 --- a/etc/hedgewars.profile +++ b/etc/hedgewars.profile | |||
| @@ -7,12 +7,16 @@ include /etc/firejail/disable-devel.inc | |||
| 7 | include /etc/firejail/disable-passwdmgr.inc | 7 | include /etc/firejail/disable-passwdmgr.inc |
| 8 | 8 | ||
| 9 | caps.drop all | 9 | caps.drop all |
| 10 | netfilter | ||
| 11 | nogroups | ||
| 10 | nonewprivs | 12 | nonewprivs |
| 11 | noroot | 13 | noroot |
| 12 | private-dev | ||
| 13 | seccomp | 14 | seccomp |
| 14 | tracelog | 15 | tracelog |
| 15 | 16 | ||
| 17 | private-dev | ||
| 18 | private-tmp | ||
| 19 | |||
| 16 | mkdir ~/.hedgewars | 20 | mkdir ~/.hedgewars |
| 17 | whitelist ~/.hedgewars | 21 | whitelist ~/.hedgewars |
| 18 | include /etc/firejail/whitelist-common.inc | 22 | include /etc/firejail/whitelist-common.inc |