diff options
author | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-07-10 00:00:11 +1000 |
---|---|---|
committer | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-07-10 00:00:11 +1000 |
commit | 2e1b94c4251e6a841672f3df96e3d503d380ef1b (patch) | |
tree | c9bde903608cc92747ebe53fa5a7dae4f3db435e /etc/warzone2100.profile | |
parent | cleanup (diff) | |
download | firejail-2e1b94c4251e6a841672f3df96e3d503d380ef1b.tar.gz firejail-2e1b94c4251e6a841672f3df96e3d503d380ef1b.tar.zst firejail-2e1b94c4251e6a841672f3df96e3d503d380ef1b.zip |
private-bin conversion
Diffstat (limited to 'etc/warzone2100.profile')
-rw-r--r-- | etc/warzone2100.profile | 11 |
1 files changed, 8 insertions, 3 deletions
diff --git a/etc/warzone2100.profile b/etc/warzone2100.profile index ceeaca012..ff37e2800 100644 --- a/etc/warzone2100.profile +++ b/etc/warzone2100.profile | |||
@@ -6,15 +6,20 @@ include /etc/firejail/disable-devel.inc | |||
6 | include /etc/firejail/disable-passwdmgr.inc | 6 | include /etc/firejail/disable-passwdmgr.inc |
7 | include /etc/firejail/disable-programs.inc | 7 | include /etc/firejail/disable-programs.inc |
8 | 8 | ||
9 | # Whitelist | ||
10 | mkdir ~/.warzone2100-3.1 | ||
11 | whitelist ~/.warzone2100-3.1 | ||
12 | |||
9 | # Call these options | 13 | # Call these options |
10 | caps.drop all | 14 | caps.drop all |
11 | netfilter | 15 | netfilter |
16 | nogroups | ||
12 | nonewprivs | 17 | nonewprivs |
13 | noroot | 18 | noroot |
14 | protocol unix,inet,inet6,netlink | 19 | protocol unix,inet,inet6,netlink |
15 | seccomp | 20 | seccomp |
21 | shell none | ||
16 | tracelog | 22 | tracelog |
17 | 23 | ||
18 | # Whitelist | 24 | private-bin warzone2100 |
19 | mkdir ~/.warzone2100-3.1 | 25 | private-dev |
20 | whitelist ~/.warzone2100-3.1 | ||