diff options
author | rusty-snake <print_hello_world+Public@protonmail.com> | 2020-01-02 10:35:39 +0100 |
---|---|---|
committer | rusty-snake <print_hello_world+Public@protonmail.com> | 2020-01-02 10:37:38 +0100 |
commit | ba0fe38fd01ee07f204a175cd3fc1c0d49e418b8 (patch) | |
tree | da5b149f46b6a58d4a0c5b2f5fcf24aeca1fccd6 /etc | |
parent | gnome-builder: fix build cache (diff) | |
download | firejail-ba0fe38fd01ee07f204a175cd3fc1c0d49e418b8.tar.gz firejail-ba0fe38fd01ee07f204a175cd3fc1c0d49e418b8.tar.zst firejail-ba0fe38fd01ee07f204a175cd3fc1c0d49e418b8.zip |
Harden openshot
Diffstat (limited to 'etc')
-rw-r--r-- | etc/openshot.profile | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/etc/openshot.profile b/etc/openshot.profile index 0222243ed..116cb56e4 100644 --- a/etc/openshot.profile +++ b/etc/openshot.profile | |||
@@ -24,7 +24,7 @@ include whitelist-var-common.inc | |||
24 | 24 | ||
25 | apparmor | 25 | apparmor |
26 | caps.drop all | 26 | caps.drop all |
27 | netfilter | 27 | net none |
28 | nodbus | 28 | nodbus |
29 | nodvd | 29 | nodvd |
30 | nogroups | 30 | nogroups |
@@ -32,9 +32,10 @@ nonewprivs | |||
32 | noroot | 32 | noroot |
33 | notv | 33 | notv |
34 | nou2f | 34 | nou2f |
35 | protocol unix,inet,inet6,netlink | 35 | protocol unix,netlink |
36 | seccomp | 36 | seccomp |
37 | shell none | 37 | shell none |
38 | tracelog | ||
38 | 39 | ||
39 | private-dev | 40 | private-dev |
40 | private-tmp | 41 | private-tmp |