diff options
| author |  Neo00001 <40570803+Neo00001@users.noreply.github.com> | 2020-07-24 11:36:41 +0000 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2020-07-24 11:36:41 +0000 |
| commit | 6304800578458e3e6aa462fe3e7d4c5261bcfe10 (patch) | |
| tree | 1247f5bb2b127efa96a2bafd1e8386204f8cdf38 /etc | |
| parent | Merge pull request #3543 from kortewegdevries/github-desktop-patch (diff) | |
| download | firejail-6304800578458e3e6aa462fe3e7d4c5261bcfe10.tar.gz firejail-6304800578458e3e6aa462fe3e7d4c5261bcfe10.tar.zst firejail-6304800578458e3e6aa462fe3e7d4c5261bcfe10.zip | |
Update virtualbox.profile (#3537)
* Update virtualbox.profile
* Update virtualbox.profile
* Update virtualbox.profile
* Update virtualbox.profile
* Update virtualbox.profile
* Update virtualbox.profile
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/profile-m-z/virtualbox.profile | 19 |
1 files changed, 18 insertions, 1 deletions
diff --git a/etc/profile-m-z/virtualbox.profile b/etc/profile-m-z/virtualbox.profile index c0dbc9116..12bef5d1f 100644 --- a/etc/profile-m-z/virtualbox.profile +++ b/etc/profile-m-z/virtualbox.profile | |||
| @@ -14,9 +14,12 @@ noblacklist /usr/lib/virtualbox | |||
| 14 | noblacklist /usr/lib64/virtualbox | 14 | noblacklist /usr/lib64/virtualbox |
| 15 | 15 | ||
| 16 | include disable-common.inc | 16 | include disable-common.inc |
| 17 | include disable-devel.inc | ||
| 17 | include disable-exec.inc | 18 | include disable-exec.inc |
| 19 | include disable-interpreters.inc | ||
| 18 | include disable-passwdmgr.inc | 20 | include disable-passwdmgr.inc |
| 19 | include disable-programs.inc | 21 | include disable-programs.inc |
| 22 | include disable-xdg.inc | ||
| 20 | 23 | ||
| 21 | mkdir ${HOME}/.config/VirtualBox | 24 | mkdir ${HOME}/.config/VirtualBox |
| 22 | mkdir ${HOME}/VirtualBox VMs | 25 | mkdir ${HOME}/VirtualBox VMs |
| @@ -24,9 +27,23 @@ whitelist ${HOME}/.config/VirtualBox | |||
| 24 | whitelist ${HOME}/VirtualBox VMs | 27 | whitelist ${HOME}/VirtualBox VMs |
| 25 | whitelist ${DOWNLOADS} | 28 | whitelist ${DOWNLOADS} |
| 26 | include whitelist-common.inc | 29 | include whitelist-common.inc |
| 30 | include whitelist-runuser-common.inc | ||
| 31 | include whitelist-usr-share-common.inc | ||
| 27 | include whitelist-var-common.inc | 32 | include whitelist-var-common.inc |
| 28 | 33 | ||
| 29 | caps.keep net_raw,sys_admin,sys_nice | 34 | # For host-only network sys_admin is needed. See https://github.com/netblue30/firejail/issues/2868#issuecomment-518647630 |
| 35 | |||
| 36 | caps.keep net_raw,sys_nice | ||
| 30 | netfilter | 37 | netfilter |
| 31 | nodvd | 38 | nodvd |
| 39 | #nogroups | ||
| 32 | notv | 40 | notv |
| 41 | shell none | ||
| 42 | tracelog | ||
| 43 | |||
| 44 | #disable-mnt | ||
| 45 | private-cache | ||
| 46 | private-etc alsa,asound.conf,ca-certificates,conf.d,crypto-policies,dconf,fonts,hostname,hosts,ld.so.cache,localtime,machine-id,pki,pulse,resolv.conf,ssl | ||
| 47 | |||
| 48 | dbus-user none | ||
| 49 | dbus-system none | ||