diff options
author | netblue30 <netblue30@protonmail.com> | 2021-11-09 07:18:31 -0500 |
---|---|---|
committer | netblue30 <netblue30@protonmail.com> | 2021-11-09 07:18:31 -0500 |
commit | e479ac000074b096559bc16bd0b6886dc03f2f45 (patch) | |
tree | b9d9468cbc6448935f857e7e1bf336cc979a7c67 /etc/inc | |
parent | Merge pull request #4574 from a1346054/shellcheck-fix (diff) | |
download | firejail-e479ac000074b096559bc16bd0b6886dc03f2f45.tar.gz firejail-e479ac000074b096559bc16bd0b6886dc03f2f45.tar.zst firejail-e479ac000074b096559bc16bd0b6886dc03f2f45.zip |
disable-common.inc: blacklist ssh
Diffstat (limited to 'etc/inc')
-rw-r--r-- | etc/inc/allow-ssh.inc | 1 | ||||
-rw-r--r-- | etc/inc/disable-common.inc | 3 |
2 files changed, 4 insertions, 0 deletions
diff --git a/etc/inc/allow-ssh.inc b/etc/inc/allow-ssh.inc index 67c78a483..e3f546389 100644 --- a/etc/inc/allow-ssh.inc +++ b/etc/inc/allow-ssh.inc | |||
@@ -6,3 +6,4 @@ noblacklist ${HOME}/.ssh | |||
6 | noblacklist /etc/ssh | 6 | noblacklist /etc/ssh |
7 | noblacklist /etc/ssh/ssh_config | 7 | noblacklist /etc/ssh/ssh_config |
8 | noblacklist /tmp/ssh-* | 8 | noblacklist /tmp/ssh-* |
9 | noblacklist ${PATH}/ssh | ||
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc index f3d685d18..52221f4b3 100644 --- a/etc/inc/disable-common.inc +++ b/etc/inc/disable-common.inc | |||
@@ -493,6 +493,8 @@ blacklist ${PATH}/umount | |||
493 | blacklist ${PATH}/unix_chkpwd | 493 | blacklist ${PATH}/unix_chkpwd |
494 | blacklist ${PATH}/xev | 494 | blacklist ${PATH}/xev |
495 | blacklist ${PATH}/xinput | 495 | blacklist ${PATH}/xinput |
496 | # from 0.9.67 | ||
497 | blacklist ${PATH}/ssh | ||
496 | blacklist /usr/lib/openssh/ssh-keysign | 498 | blacklist /usr/lib/openssh/ssh-keysign |
497 | blacklist ${PATH}/passwd | 499 | blacklist ${PATH}/passwd |
498 | blacklist /usr/lib/xorg/Xorg.wrap | 500 | blacklist /usr/lib/xorg/Xorg.wrap |
@@ -593,3 +595,4 @@ blacklist ${RUNUSER}/*.lock | |||
593 | blacklist ${RUNUSER}/inaccessible | 595 | blacklist ${RUNUSER}/inaccessible |
594 | blacklist ${RUNUSER}/pk-debconf-socket | 596 | blacklist ${RUNUSER}/pk-debconf-socket |
595 | blacklist ${RUNUSER}/update-notifier.pid | 597 | blacklist ${RUNUSER}/update-notifier.pid |
598 | |||