diff options
author | pirate486743186 <okgomdjgbmoij@gmail.com> | 2021-06-07 20:34:09 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-06-07 20:34:09 +0200 |
commit | 450d0124f78ac8235d60e16838d093f95c1718fe (patch) | |
tree | 058ed1f113f4d77673781a34534c77f1e988b9b6 /etc/profile-m-z | |
parent | fixup 9678da00301562464464099b9d7cfd76424fbb23 (diff) | |
download | firejail-450d0124f78ac8235d60e16838d093f95c1718fe.tar.gz firejail-450d0124f78ac8235d60e16838d093f95c1718fe.tar.zst firejail-450d0124f78ac8235d60e16838d093f95c1718fe.zip |
Update w3m.profile
Diffstat (limited to 'etc/profile-m-z')
-rw-r--r-- | etc/profile-m-z/w3m.profile | 25 |
1 files changed, 23 insertions, 2 deletions
diff --git a/etc/profile-m-z/w3m.profile b/etc/profile-m-z/w3m.profile index 131213ed2..3aa190884 100644 --- a/etc/profile-m-z/w3m.profile +++ b/etc/profile-m-z/w3m.profile | |||
@@ -17,18 +17,33 @@ noblacklist ${HOME}/.w3m | |||
17 | blacklist /tmp/.X11-unix | 17 | blacklist /tmp/.X11-unix |
18 | blacklist ${RUNUSER}/wayland-* | 18 | blacklist ${RUNUSER}/wayland-* |
19 | 19 | ||
20 | # Allow /bin/sh (blacklisted by disable-shell.inc) | ||
21 | include allow-bin-sh.inc | ||
22 | |||
23 | # Allow perl (blacklisted by disable-interpreters.inc) | ||
20 | include allow-perl.inc | 24 | include allow-perl.inc |
21 | 25 | ||
22 | include disable-common.inc | 26 | include disable-common.inc |
23 | include disable-devel.inc | 27 | include disable-devel.inc |
28 | include disable-exec.inc | ||
24 | include disable-interpreters.inc | 29 | include disable-interpreters.inc |
25 | include disable-passwdmgr.inc | 30 | include disable-passwdmgr.inc |
26 | include disable-programs.inc | 31 | include disable-programs.inc |
32 | include disable-shell.inc | ||
33 | include disable-write-mnt.inc | ||
27 | include disable-xdg.inc | 34 | include disable-xdg.inc |
28 | 35 | ||
36 | mkdir ${HOME}/.w3m | ||
37 | whitelist /usr/share/w3m | ||
38 | whitelist ${DOWNLOADS} | ||
39 | whitelist ${HOME}/.w3m | ||
29 | include whitelist-runuser-common.inc | 40 | include whitelist-runuser-common.inc |
41 | include whitelist-usr-share-common.inc | ||
42 | include whitelist-var-common.inc | ||
30 | 43 | ||
31 | caps.drop all | 44 | caps.drop all |
45 | ipc-namespace | ||
46 | machine-id | ||
32 | netfilter | 47 | netfilter |
33 | no3d | 48 | no3d |
34 | nodvd | 49 | nodvd |
@@ -45,8 +60,14 @@ seccomp | |||
45 | shell none | 60 | shell none |
46 | tracelog | 61 | tracelog |
47 | 62 | ||
48 | # private-bin w3m | 63 | disable-mnt |
64 | private-bin perl,sh,w3m | ||
49 | private-cache | 65 | private-cache |
50 | private-dev | 66 | private-dev |
51 | private-etc alternatives,ca-certificates,crypto-policies,pki,resolv.conf,ssl | 67 | private-etc alternatives,ca-certificates,crypto-policies,mailcap,nsswitch.conf,pki,resolv.conf,ssl |
52 | private-tmp | 68 | private-tmp |
69 | |||
70 | dbus-user none | ||
71 | dbus-system none | ||
72 | |||
73 | memory-deny-write-execute | ||