diff options
| author |  glitsj16 <glitsj16@users.noreply.github.com> | 2023-03-14 23:17:05 +0000 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2023-03-14 23:17:05 +0000 |
| commit | 35c9f1fd385690bea3bc05641abc31372ab6afb3 (patch) | |
| tree | 99d3419e866ae6496db1186467cb80e9450bc8b0 /etc/profile-a-l | |
| parent | profiles: streamline seccomp socket comment (#5735) (diff) | |
| download | firejail-35c9f1fd385690bea3bc05641abc31372ab6afb3.tar.gz firejail-35c9f1fd385690bea3bc05641abc31372ab6afb3.tar.zst firejail-35c9f1fd385690bea3bc05641abc31372ab6afb3.zip | |
profiles: drop hostname option (#5702)
Now that we have randomized UTS namespaces support[1] by default for
every sandbox, there's no longer a need to set hostname to a fixed
value. This commit removes such fixed hostname entries from all
profiles that have it.
[1] https://github.com/netblue30/firejail/discussions/5597#discussioncomment-4996357
Diffstat (limited to 'etc/profile-a-l')
| -rw-r--r-- | etc/profile-a-l/agetpkg.profile | 1 | ||||
| -rw-r--r-- | etc/profile-a-l/archiver-common.profile | 1 | ||||
| -rw-r--r-- | etc/profile-a-l/file.profile | 1 | ||||
| -rw-r--r-- | etc/profile-a-l/galculator.profile | 1 | ||||
| -rw-r--r-- | etc/profile-a-l/geekbench.profile | 1 |
5 files changed, 0 insertions, 5 deletions
diff --git a/etc/profile-a-l/agetpkg.profile b/etc/profile-a-l/agetpkg.profile index 7a36302f1..9ebbf1cb0 100644 --- a/etc/profile-a-l/agetpkg.profile +++ b/etc/profile-a-l/agetpkg.profile | |||
| @@ -28,7 +28,6 @@ include whitelist-usr-share-common.inc | |||
| 28 | include whitelist-var-common.inc | 28 | include whitelist-var-common.inc |
| 29 | 29 | ||
| 30 | caps.drop all | 30 | caps.drop all |
| 31 | hostname agetpkg | ||
| 32 | ipc-namespace | 31 | ipc-namespace |
| 33 | machine-id | 32 | machine-id |
| 34 | netfilter | 33 | netfilter |
diff --git a/etc/profile-a-l/archiver-common.profile b/etc/profile-a-l/archiver-common.profile index ef875c5b7..487e0c5f8 100644 --- a/etc/profile-a-l/archiver-common.profile +++ b/etc/profile-a-l/archiver-common.profile | |||
| @@ -23,7 +23,6 @@ include disable-shell.inc | |||
| 23 | 23 | ||
| 24 | apparmor | 24 | apparmor |
| 25 | caps.drop all | 25 | caps.drop all |
| 26 | hostname archiver | ||
| 27 | ipc-namespace | 26 | ipc-namespace |
| 28 | machine-id | 27 | machine-id |
| 29 | net none | 28 | net none |
diff --git a/etc/profile-a-l/file.profile b/etc/profile-a-l/file.profile index a5fd05bc7..78f1327c5 100644 --- a/etc/profile-a-l/file.profile +++ b/etc/profile-a-l/file.profile | |||
| @@ -15,7 +15,6 @@ include disable-programs.inc | |||
| 15 | 15 | ||
| 16 | apparmor | 16 | apparmor |
| 17 | caps.drop all | 17 | caps.drop all |
| 18 | hostname file | ||
| 19 | ipc-namespace | 18 | ipc-namespace |
| 20 | machine-id | 19 | machine-id |
| 21 | net none | 20 | net none |
diff --git a/etc/profile-a-l/galculator.profile b/etc/profile-a-l/galculator.profile index 96ded592d..44d62cc86 100644 --- a/etc/profile-a-l/galculator.profile +++ b/etc/profile-a-l/galculator.profile | |||
| @@ -23,7 +23,6 @@ include whitelist-var-common.inc | |||
| 23 | 23 | ||
| 24 | apparmor | 24 | apparmor |
| 25 | caps.drop all | 25 | caps.drop all |
| 26 | #hostname galculator - breaks Arch Linux | ||
| 27 | #ipc-namespace | 26 | #ipc-namespace |
| 28 | net none | 27 | net none |
| 29 | nodvd | 28 | nodvd |
diff --git a/etc/profile-a-l/geekbench.profile b/etc/profile-a-l/geekbench.profile index 3a929774a..e8d4c013f 100644 --- a/etc/profile-a-l/geekbench.profile +++ b/etc/profile-a-l/geekbench.profile | |||
| @@ -25,7 +25,6 @@ include whitelist-var-common.inc | |||
| 25 | 25 | ||
| 26 | apparmor | 26 | apparmor |
| 27 | caps.drop all | 27 | caps.drop all |
| 28 | hostname geekbench | ||
| 29 | ipc-namespace | 28 | ipc-namespace |
| 30 | machine-id | 29 | machine-id |
| 31 | netfilter | 30 | netfilter |