diff options
author | smitsohu <smitsohu@gmail.com> | 2018-12-11 00:25:23 +0100 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2018-12-11 00:25:23 +0100 |
commit | 6e8ece1f52a1abba5020b6f8d51e7a33dfa3e4b6 (patch) | |
tree | dd2713737f55b709f1c4bd9be9c015bb36e11496 /etc | |
parent | Merge pull request #2294 from rusty-snake/add-thunderbird-wayland (diff) | |
download | firejail-6e8ece1f52a1abba5020b6f8d51e7a33dfa3e4b6.tar.gz firejail-6e8ece1f52a1abba5020b6f8d51e7a33dfa3e4b6.tar.zst firejail-6e8ece1f52a1abba5020b6f8d51e7a33dfa3e4b6.zip |
profile enhancements: blacklist kdesu daemon socket, rework c083a7b737050c532977b46fac6400f1dbc24ff6
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-common.inc | 10 | ||||
-rw-r--r-- | etc/dolphin.profile | 1 |
2 files changed, 5 insertions, 6 deletions
diff --git a/etc/disable-common.inc b/etc/disable-common.inc index 481717d24..f7efc1dba 100644 --- a/etc/disable-common.inc +++ b/etc/disable-common.inc | |||
@@ -119,13 +119,11 @@ read-only ${HOME}/.local/share/kservices5 | |||
119 | read-only ${HOME}/.local/share/kssl | 119 | read-only ${HOME}/.local/share/kssl |
120 | 120 | ||
121 | # KDE sockets | 121 | # KDE sockets |
122 | blacklist ${RUNUSER}/kdeinit5__* | ||
123 | blacklist ${RUNUSER}/*.slave-socket | 122 | blacklist ${RUNUSER}/*.slave-socket |
124 | # decide heuristically if the kdeinit4 socket can be blacklisted | 123 | blacklist ${RUNUSER}/kdeinit5__* |
125 | ?HAS_NODBUS: blacklist ${RUNUSER}/ksocket-*/kdeinit4__* | 124 | blacklist ${RUNUSER}/kdesud_* |
126 | blacklist ${RUNUSER}/ksocket-*/*.slave-socket | 125 | ?HAS_NODBUS: blacklist ${RUNUSER}/ksocket-* |
127 | ?HAS_NODBUS: blacklist /tmp/ksocket-*/kdeinit4__* | 126 | ?HAS_NODBUS: blacklist /tmp/ksocket-* |
128 | blacklist /tmp/ksocket-*/*.slave-socket | ||
129 | 127 | ||
130 | # gnome | 128 | # gnome |
131 | # contains extensions, last used times of applications, and notifications | 129 | # contains extensions, last used times of applications, and notifications |
diff --git a/etc/dolphin.profile b/etc/dolphin.profile index c899ffec9..fbf8014ad 100644 --- a/etc/dolphin.profile +++ b/etc/dolphin.profile | |||
@@ -19,6 +19,7 @@ include disable-passwdmgr.inc | |||
19 | # include disable-programs.inc | 19 | # include disable-programs.inc |
20 | 20 | ||
21 | caps.drop all | 21 | caps.drop all |
22 | # net none | ||
22 | netfilter | 23 | netfilter |
23 | nodvd | 24 | nodvd |
24 | nogroups | 25 | nogroups |