diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2019-03-12 07:21:40 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-03-12 07:21:40 +0000 |
commit | 3dfd712f5da740e270cf3b5013a05f55c91b5230 (patch) | |
tree | bceccb122198e27ae5ad917278729cb99f10e45a /etc/viewnior.profile | |
parent | Fix and harden soundconverter (#2569) (diff) | |
download | firejail-3dfd712f5da740e270cf3b5013a05f55c91b5230.tar.gz firejail-3dfd712f5da740e270cf3b5013a05f55c91b5230.tar.zst firejail-3dfd712f5da740e270cf3b5013a05f55c91b5230.zip |
Fix and harden viewnior (#2570)
Diffstat (limited to 'etc/viewnior.profile')
-rw-r--r-- | etc/viewnior.profile | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/etc/viewnior.profile b/etc/viewnior.profile index 94b6c2052..1da14459b 100644 --- a/etc/viewnior.profile +++ b/etc/viewnior.profile | |||
@@ -18,7 +18,10 @@ include disable-interpreters.inc | |||
18 | include disable-passwdmgr.inc | 18 | include disable-passwdmgr.inc |
19 | include disable-programs.inc | 19 | include disable-programs.inc |
20 | 20 | ||
21 | apparmor | ||
21 | caps.drop all | 22 | caps.drop all |
23 | hostname viewnior | ||
24 | ipc-namespace | ||
22 | net none | 25 | net none |
23 | no3d | 26 | no3d |
24 | nodbus | 27 | nodbus |
@@ -38,7 +41,7 @@ tracelog | |||
38 | private-bin viewnior | 41 | private-bin viewnior |
39 | private-cache | 42 | private-cache |
40 | private-dev | 43 | private-dev |
41 | private-etc alternatives,fonts | 44 | private-etc alternatives,fonts,machine-id |
42 | private-tmp | 45 | private-tmp |
43 | 46 | ||
44 | # memory-deny-write-executes breaks on Arch - see issue #1808 | 47 | # memory-deny-write-executes breaks on Arch - see issue #1808 |