diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2023-02-23 12:27:15 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2023-02-23 12:27:15 +0000 |
commit | 1e059fe4da1abbe3ca6289f85c197a5b6a070987 (patch) | |
tree | c3d8492c9fa737f039618c90aa0c68143718fa39 /etc | |
parent | RELNOTES: add build and docs items (diff) | |
download | firejail-1e059fe4da1abbe3ca6289f85c197a5b6a070987.tar.gz firejail-1e059fe4da1abbe3ca6289f85c197a5b6a070987.tar.zst firejail-1e059fe4da1abbe3ca6289f85c197a5b6a070987.zip |
disable-common.inc: add systemd v253 blacklists (#5669)
Arch Linux got systemd v253:
https://github.com/archlinux/svntogit-packages/commit/05d0aedb2b83a2e1ba07cab47205772f82cb4814
It adds a few new files we should blacklist in `disable-common.inc`:
- /etc/credstore
- /etc/credstore.encrypted
- /run/credentials/systemd-sysctl.service
- /run/credentials/systemd-sysusers.service
- /run/credentials/systemd-tmpfiles-setup.service
- /run/credentials/systemd-tmpfiles-setup-dev.service
Diffstat (limited to 'etc')
-rw-r--r-- | etc/inc/disable-common.inc | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc index 81f417232..65159b951 100644 --- a/etc/inc/disable-common.inc +++ b/etc/inc/disable-common.inc | |||
@@ -168,8 +168,10 @@ blacklist ${HOME}/.local/share/systemd | |||
168 | blacklist ${PATH}/systemctl | 168 | blacklist ${PATH}/systemctl |
169 | blacklist ${PATH}/systemd-run | 169 | blacklist ${PATH}/systemd-run |
170 | blacklist ${RUNUSER}/systemd | 170 | blacklist ${RUNUSER}/systemd |
171 | blacklist /etc/credstore* | ||
171 | blacklist /etc/systemd/network | 172 | blacklist /etc/systemd/network |
172 | blacklist /etc/systemd/system | 173 | blacklist /etc/systemd/system |
174 | blacklist /run/credentials | ||
173 | blacklist /var/lib/systemd | 175 | blacklist /var/lib/systemd |
174 | # creates problems on Arch where /etc/resolv.conf is a symlink to /var/run/systemd/resolve/resolv.conf | 176 | # creates problems on Arch where /etc/resolv.conf is a symlink to /var/run/systemd/resolve/resolv.conf |
175 | #blacklist /var/run/systemd | 177 | #blacklist /var/run/systemd |