diff options
author | smitsohu <smitsohu@gmail.com> | 2022-04-10 18:15:16 +0200 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2022-04-10 18:15:16 +0200 |
commit | d334449480e2fa64420a622afd63111570c88f86 (patch) | |
tree | f861703a45678b36d4cbb013bd8f4ffc3d1cb106 /etc | |
parent | libvirt dnsmasq fix (#5089) (diff) | |
download | firejail-d334449480e2fa64420a622afd63111570c88f86.tar.gz firejail-d334449480e2fa64420a622afd63111570c88f86.tar.zst firejail-d334449480e2fa64420a622afd63111570c88f86.zip |
harden dnsmasq
private option implies private-cache,
so it is safe to remove
Diffstat (limited to 'etc')
-rw-r--r-- | etc/profile-a-l/dnsmasq.profile | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/etc/profile-a-l/dnsmasq.profile b/etc/profile-a-l/dnsmasq.profile index 71b960311..abf7ecabe 100644 --- a/etc/profile-a-l/dnsmasq.profile +++ b/etc/profile-a-l/dnsmasq.profile | |||
@@ -11,7 +11,7 @@ noblacklist /sbin | |||
11 | noblacklist /usr/sbin | 11 | noblacklist /usr/sbin |
12 | 12 | ||
13 | blacklist /tmp/.X11-unix | 13 | blacklist /tmp/.X11-unix |
14 | blacklist ${RUNUSER}/wayland-* | 14 | blacklist ${RUNUSER} |
15 | 15 | ||
16 | include disable-common.inc | 16 | include disable-common.inc |
17 | include disable-devel.inc | 17 | include disable-devel.inc |
@@ -36,6 +36,6 @@ seccomp | |||
36 | 36 | ||
37 | disable-mnt | 37 | disable-mnt |
38 | private | 38 | private |
39 | private-cache | ||
40 | private-dev | 39 | private-dev |
40 | private-tmp | ||
41 | writable-var | 41 | writable-var |