diff options
author | Tad <tad@spotco.us> | 2018-09-19 15:32:18 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2018-09-19 15:32:48 -0400 |
commit | c0ba48bec1bc11c98cbac3c6cc9fdf117dcb98d1 (patch) | |
tree | 83e0f2b4020db3c9ae6c0501aab2d30f56df086e /etc/patch.profile | |
parent | 0.9.56 released (diff) | |
download | firejail-c0ba48bec1bc11c98cbac3c6cc9fdf117dcb98d1.tar.gz firejail-c0ba48bec1bc11c98cbac3c6cc9fdf117dcb98d1.tar.zst firejail-c0ba48bec1bc11c98cbac3c6cc9fdf117dcb98d1.zip |
Misc profile hardening
Diffstat (limited to 'etc/patch.profile')
-rw-r--r-- | etc/patch.profile | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/etc/patch.profile b/etc/patch.profile index d4058d6e7..8fa6ac966 100644 --- a/etc/patch.profile +++ b/etc/patch.profile | |||
@@ -15,6 +15,8 @@ include /etc/firejail/disable-interpreters.inc | |||
15 | include /etc/firejail/disable-passwdmgr.inc | 15 | include /etc/firejail/disable-passwdmgr.inc |
16 | include /etc/firejail/disable-xdg.inc | 16 | include /etc/firejail/disable-xdg.inc |
17 | 17 | ||
18 | include /etc/firejail/whitelist-var-common.inc | ||
19 | |||
18 | caps.drop all | 20 | caps.drop all |
19 | ipc-namespace | 21 | ipc-namespace |
20 | net none | 22 | net none |