diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2019-02-24 22:04:15 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-02-24 22:04:15 +0000 |
commit | 135c6462b0cda73eaf4d27efbf6b1ecfac0b3b34 (patch) | |
tree | 956330cc4df3afd61114c46fc1be8a9a08ce1362 /etc/img2txt.profile | |
parent | Harden gucharmap.profile (#2463) (diff) | |
download | firejail-135c6462b0cda73eaf4d27efbf6b1ecfac0b3b34.tar.gz firejail-135c6462b0cda73eaf4d27efbf6b1ecfac0b3b34.tar.zst firejail-135c6462b0cda73eaf4d27efbf6b1ecfac0b3b34.zip |
Harden img2txt.profile (#2464)
Diffstat (limited to 'etc/img2txt.profile')
-rw-r--r-- | etc/img2txt.profile | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/etc/img2txt.profile b/etc/img2txt.profile index 2011759e3..24fd29fbe 100644 --- a/etc/img2txt.profile +++ b/etc/img2txt.profile | |||
@@ -15,7 +15,10 @@ include disable-passwdmgr.inc | |||
15 | include disable-programs.inc | 15 | include disable-programs.inc |
16 | include disable-xdg.inc | 16 | include disable-xdg.inc |
17 | 17 | ||
18 | apparmor | ||
18 | caps.drop all | 19 | caps.drop all |
20 | ipc-namespace | ||
21 | machine-id | ||
19 | net none | 22 | net none |
20 | nodbus | 23 | nodbus |
21 | nodvd | 24 | nodvd |
@@ -36,3 +39,7 @@ private-cache | |||
36 | private-dev | 39 | private-dev |
37 | # private-etc alternatives | 40 | # private-etc alternatives |
38 | private-tmp | 41 | private-tmp |
42 | |||
43 | memory-deny-write-execute | ||
44 | noexec ${HOME} | ||
45 | noexec /tmp | ||