diff options
author | smitsohu <smitsohu@gmail.com> | 2019-03-15 12:37:36 +0100 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2019-03-15 12:37:36 +0100 |
commit | 529315fe17a526eb8200e42a44b57ddffbd7a838 (patch) | |
tree | a70214750cdd46f0e6945d24a715ab19125a8244 /etc/server.profile | |
parent | ffmpegthumbnailer breaks in ranger with private-cache enabled from (#2596) (diff) | |
download | firejail-529315fe17a526eb8200e42a44b57ddffbd7a838.tar.gz firejail-529315fe17a526eb8200e42a44b57ddffbd7a838.tar.zst firejail-529315fe17a526eb8200e42a44b57ddffbd7a838.zip |
profile hardening: add disable-exec.inc in more places
Diffstat (limited to 'etc/server.profile')
-rw-r--r-- | etc/server.profile | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/etc/server.profile b/etc/server.profile index 8da4853e7..686268a18 100644 --- a/etc/server.profile +++ b/etc/server.profile | |||
@@ -17,10 +17,11 @@ noblacklist /usr/sbin | |||
17 | 17 | ||
18 | include disable-common.inc | 18 | include disable-common.inc |
19 | # include disable-devel.inc | 19 | # include disable-devel.inc |
20 | # include disable-exec.inc | ||
20 | # include disable-interpreters.inc | 21 | # include disable-interpreters.inc |
21 | include disable-passwdmgr.inc | 22 | include disable-passwdmgr.inc |
22 | include disable-programs.inc | 23 | include disable-programs.inc |
23 | #include disable-xdg.inc | 24 | # include disable-xdg.inc |
24 | 25 | ||
25 | caps | 26 | caps |
26 | # ipc-namespace | 27 | # ipc-namespace |
@@ -48,5 +49,3 @@ private-dev | |||
48 | private-tmp | 49 | private-tmp |
49 | 50 | ||
50 | # memory-deny-write-execute | 51 | # memory-deny-write-execute |
51 | # noexec ${HOME} | ||
52 | # noexec /tmp | ||