diff options
author | James Elford <james.p.elford@gmail.com> | 2018-02-07 07:37:44 +0000 |
---|---|---|
committer | James Elford <james.p.elford@gmail.com> | 2018-02-07 07:37:44 +0000 |
commit | 4fbb2936ebf02760c8475f392da2ba29c35ae22a (patch) | |
tree | f1bf558f5ece9476cd2e0f594ba0335688aec558 /etc/remmina.profile | |
parent | Merge branch 'master' of https://github.com/netblue30/firejail (diff) | |
download | firejail-4fbb2936ebf02760c8475f392da2ba29c35ae22a.tar.gz firejail-4fbb2936ebf02760c8475f392da2ba29c35ae22a.tar.zst firejail-4fbb2936ebf02760c8475f392da2ba29c35ae22a.zip |
Add seccomp filters for remmina, from an strace session connecting via RDP
Diffstat (limited to 'etc/remmina.profile')
-rw-r--r-- | etc/remmina.profile | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/remmina.profile b/etc/remmina.profile index 3bb6aa0b1..fe429c32c 100644 --- a/etc/remmina.profile +++ b/etc/remmina.profile | |||
@@ -22,7 +22,7 @@ noroot | |||
22 | notv | 22 | notv |
23 | novideo | 23 | novideo |
24 | protocol unix,inet,inet6 | 24 | protocol unix,inet,inet6 |
25 | seccomp | 25 | seccomp.keep access,arch_prctl,brk,chmod,clock_getres,clock_gettime,clone,close,connect,dup3,eventfd2,execve,fadvise64,fallocate,fcntl,flock,fstat,fstatfs,fsync,ftruncate,futex,getdents,getegid,geteuid,getgid,getpeername,getpid,getrandom,getresgid,getresuid,getsockname,getsockopt,gettid,getuid,inotify_add_watch,inotify_init1,inotify_rm_watch,ioctl,lseek,lstat,madvise,memfd_create,mmap,mprotect,mremap,munmap,nanosleep,open,openat,pipe,pipe2,poll,prctl,prlimit64,pwrite64,read,readlink,recvfrom,recvmsg,rename,rt_sigaction,rt_sigprocmask,sendmmsg,sendmsg,sendto,set_robust_list,setsockopt,set_tid_address,shmat,shmctl,shmdt,shmget,shutdown,socket,stat,statfs,sysinfo,tgkill,uname,utimensat,write,writev |
26 | shell none | 26 | shell none |
27 | 27 | ||
28 | private-dev | 28 | private-dev |