tcpdump and tshark profiles

author: netblue30 <netblue30@yahoo.com> 2019-06-13 17:12:06 -0400
committer: netblue30 <netblue30@yahoo.com> 2019-06-13 17:12:06 -0400
commit: 95eab976359ae8a06eeadbea12e558107ae9bac4 (patch)
tree: 9efcf4472d56eadc37fa591c52eb8afe95ebd711 /etc/tcpdump.profile
parent: Update godot.profile (diff)
download: firejail-95eab976359ae8a06eeadbea12e558107ae9bac4.tar.gz
firejail-95eab976359ae8a06eeadbea12e558107ae9bac4.tar.zst
firejail-95eab976359ae8a06eeadbea12e558107ae9bac4.zip
1 files changed, 44 insertions, 0 deletions
diff --git a/etc/tcpdump.profile b/etc/tcpdump.profile
new file mode 100644
index 000000000..7713ac6c0
--- /dev/null
+++ b/etc/tcpdump.profile
@@ -0,0 +1,44 @@
+# Firejail profile for tcpdump
+# This file is overwritten after every install/update
+quiet
+# Persistent local customizations
+include tcpdump.local
+# Persistent global definitions
+include globals.local
+noblacklist /sbin
+noblacklist /usr/sbin
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+include whitelist-common.inc
+caps.keep net_raw
+ipc-namespace
+#net tun0
+netfilter
+no3d
+nodvd
+#nogroups
+nonewprivs
+#noroot
+nosound
+notv
+nou2f
+novideo
+protocol unix,inet,inet6,netlink,packet
+seccomp
+disable-mnt
+#private
+#private-bin tcpdump
+private-dev
+#private-etc
+private-tmp
+memory-deny-write-execute
author	netblue30 <netblue30@yahoo.com>	2019-06-13 17:12:06 -0400
committer	netblue30 <netblue30@yahoo.com>	2019-06-13 17:12:06 -0400
commit	95eab976359ae8a06eeadbea12e558107ae9bac4 (patch)
tree	9efcf4472d56eadc37fa591c52eb8afe95ebd711 /etc/tcpdump.profile
parent	Update godot.profile (diff)
download	firejail-95eab976359ae8a06eeadbea12e558107ae9bac4.tar.gz firejail-95eab976359ae8a06eeadbea12e558107ae9bac4.tar.zst firejail-95eab976359ae8a06eeadbea12e558107ae9bac4.zip

diff --git a/etc/tcpdump.profile b/etc/tcpdump.profile new file mode 100644 index 000000000..7713ac6c0 --- /dev/null +++ b/etc/tcpdump.profile
@@ -0,0 +1,44 @@
	1	# Firejail profile for tcpdump
	2	# This file is overwritten after every install/update
	3	quiet
	4	# Persistent local customizations
	5	include tcpdump.local
	6	# Persistent global definitions
	7	include globals.local
	8
	9	noblacklist /sbin
	10	noblacklist /usr/sbin
	11	include disable-common.inc
	12	include disable-devel.inc
	13	include disable-exec.inc
	14	include disable-interpreters.inc
	15	include disable-passwdmgr.inc
	16	include disable-programs.inc
	17	include disable-xdg.inc
	18	include whitelist-common.inc
	19
	20	caps.keep net_raw
	21	ipc-namespace
	22	#net tun0
	23	netfilter
	24	no3d
	25	nodvd
	26	#nogroups
	27	nonewprivs
	28	#noroot
	29	nosound
	30	notv
	31	nou2f
	32	novideo
	33
	34	protocol unix,inet,inet6,netlink,packet
	35	seccomp
	36
	37	disable-mnt
	38	#private
	39	#private-bin tcpdump
	40	private-dev
	41	#private-etc
	42	private-tmp
	43
	44	memory-deny-write-execute