diff options
| author |  glitsj16 <glitsj16@users.noreply.github.com> | 2019-04-16 02:09:53 +0000 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2019-04-16 02:09:53 +0000 |
| commit | 9c5619151dfa899ba7f4a912aa92036099d712c1 (patch) | |
| tree | 85381624bbf1bb86be976b5253aedb9d8b80571e /etc | |
| parent | Add .pythonrc.py to disable-common.inc (#2651) (diff) | |
| download | firejail-9c5619151dfa899ba7f4a912aa92036099d712c1.tar.gz firejail-9c5619151dfa899ba7f4a912aa92036099d712c1.tar.zst firejail-9c5619151dfa899ba7f4a912aa92036099d712c1.zip | |
Follow upstream changes in authenticator.profile (#2654)
* Add authenticator cache to disable-programs.inc
* Update authenticator.profile
Follow upstream changes in authenticator.profile
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/authenticator.profile | 10 | ||||
| -rw-r--r-- | etc/disable-programs.inc | 1 |
2 files changed, 6 insertions, 5 deletions
diff --git a/etc/authenticator.profile b/etc/authenticator.profile index f989ab1ba..5f1c64682 100644 --- a/etc/authenticator.profile +++ b/etc/authenticator.profile | |||
| @@ -6,6 +6,7 @@ include authenticator.local | |||
| 6 | # Persistent global definitions | 6 | # Persistent global definitions |
| 7 | include globals.local | 7 | include globals.local |
| 8 | 8 | ||
| 9 | noblacklist ${HOME}/.cache/Authenticator | ||
| 9 | noblacklist ${HOME}/.config/Authenticator | 10 | noblacklist ${HOME}/.config/Authenticator |
| 10 | 11 | ||
| 11 | # Allow python (blacklisted by disable-interpreters.inc) | 12 | # Allow python (blacklisted by disable-interpreters.inc) |
| @@ -25,7 +26,7 @@ include disable-programs.inc | |||
| 25 | 26 | ||
| 26 | # apparmor | 27 | # apparmor |
| 27 | caps.drop all | 28 | caps.drop all |
| 28 | net none | 29 | netfilter |
| 29 | no3d | 30 | no3d |
| 30 | # nodbus - makes settings immutable | 31 | # nodbus - makes settings immutable |
| 31 | nodvd | 32 | nodvd |
| @@ -36,15 +37,14 @@ nosound | |||
| 36 | notv | 37 | notv |
| 37 | nou2f | 38 | nou2f |
| 38 | # novideo | 39 | # novideo |
| 39 | protocol unix | 40 | protocol unix,inet,inet6 |
| 40 | seccomp | 41 | seccomp |
| 41 | shell none | 42 | shell none |
| 42 | 43 | ||
| 43 | disable-mnt | 44 | disable-mnt |
| 44 | # private-bin authenticator | 45 | # private-bin authenticator,python* |
| 45 | private-cache | ||
| 46 | private-dev | 46 | private-dev |
| 47 | private-etc alternatives,fonts,ld.so.cache | 47 | private-etc alternatives,ca-certificates,fonts,ld.so.cache,ssl |
| 48 | private-tmp | 48 | private-tmp |
| 49 | 49 | ||
| 50 | # memory-deny-write-execute - breaks on Arch | 50 | # memory-deny-write-execute - breaks on Arch |
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 96fd80daf..41c6eb53e 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
| @@ -625,6 +625,7 @@ blacklist /tmp/ssh-* | |||
| 625 | # ${HOME}/.cache directory | 625 | # ${HOME}/.cache directory |
| 626 | blacklist ${HOME}/.cache/0ad | 626 | blacklist ${HOME}/.cache/0ad |
| 627 | blacklist ${HOME}/.cache/8pecxstudios | 627 | blacklist ${HOME}/.cache/8pecxstudios |
| 628 | blacklist ${HOME}/.cache/Authenticator | ||
| 628 | blacklist ${HOME}/.cache/Clementine | 629 | blacklist ${HOME}/.cache/Clementine |
| 629 | blacklist ${HOME}/.cache/Enox | 630 | blacklist ${HOME}/.cache/Enox |
| 630 | blacklist ${HOME}/.cache/Franz | 631 | blacklist ${HOME}/.cache/Franz |