diff options
| author |  glitsj16 <glitsj16@users.noreply.github.com> | 2019-06-24 23:17:09 +0000 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2019-06-24 23:17:09 +0000 |
| commit | c3b38606c73d0ea9b13e9a1908d105dff528390f (patch) | |
| tree | ecab217b96429e8fe0c24783eaaee605a19162af /etc | |
| parent | Improve profile PRs (Related to #2739) (#2784) (diff) | |
| download | firejail-c3b38606c73d0ea9b13e9a1908d105dff528390f.tar.gz firejail-c3b38606c73d0ea9b13e9a1908d105dff528390f.tar.zst firejail-c3b38606c73d0ea9b13e9a1908d105dff528390f.zip | |
Tighten SSH with nodbus (#2789)
* nodbus for ssh-agent
* nodbus for ssh.profile
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/ssh-agent.profile | 1 | ||||
| -rw-r--r-- | etc/ssh.profile | 1 |
2 files changed, 2 insertions, 0 deletions
diff --git a/etc/ssh-agent.profile b/etc/ssh-agent.profile index 9af747b62..55df45a87 100644 --- a/etc/ssh-agent.profile +++ b/etc/ssh-agent.profile | |||
| @@ -19,6 +19,7 @@ include disable-programs.inc | |||
| 19 | caps.drop all | 19 | caps.drop all |
| 20 | netfilter | 20 | netfilter |
| 21 | no3d | 21 | no3d |
| 22 | nodbus | ||
| 22 | nodvd | 23 | nodvd |
| 23 | nonewprivs | 24 | nonewprivs |
| 24 | noroot | 25 | noroot |
diff --git a/etc/ssh.profile b/etc/ssh.profile index ce0e54a0d..7a9bb5abe 100644 --- a/etc/ssh.profile +++ b/etc/ssh.profile | |||
| @@ -22,6 +22,7 @@ caps.drop all | |||
| 22 | ipc-namespace | 22 | ipc-namespace |
| 23 | netfilter | 23 | netfilter |
| 24 | no3d | 24 | no3d |
| 25 | nodbus | ||
| 25 | nodvd | 26 | nodvd |
| 26 | nogroups | 27 | nogroups |
| 27 | nonewprivs | 28 | nonewprivs |