diff options
-rw-r--r-- | etc/makepkg.profile | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/etc/makepkg.profile b/etc/makepkg.profile index 0120fc2cd..513fcae55 100644 --- a/etc/makepkg.profile +++ b/etc/makepkg.profile | |||
@@ -6,6 +6,9 @@ include makepkg.local | |||
6 | # Persistent global definitions | 6 | # Persistent global definitions |
7 | include globals.local | 7 | include globals.local |
8 | 8 | ||
9 | blacklist /tmp/.X11-unix | ||
10 | blacklist ${RUNUSER}/wayland-* | ||
11 | |||
9 | # Note: see this Arch forum discussion https://bbs.archlinux.org/viewtopic.php?pid=1743138 | 12 | # Note: see this Arch forum discussion https://bbs.archlinux.org/viewtopic.php?pid=1743138 |
10 | # for potential issues and their solutions when Firejailing makepkg | 13 | # for potential issues and their solutions when Firejailing makepkg |
11 | 14 | ||
@@ -33,6 +36,7 @@ include disable-passwdmgr.inc | |||
33 | include disable-programs.inc | 36 | include disable-programs.inc |
34 | 37 | ||
35 | caps.drop all | 38 | caps.drop all |
39 | machine-id | ||
36 | ipc-namespace | 40 | ipc-namespace |
37 | netfilter | 41 | netfilter |
38 | no3d | 42 | no3d |
@@ -42,13 +46,16 @@ nonewprivs | |||
42 | # noroot is only disabled to allow the creation of kernel headers from an official PKGBUILD. | 46 | # noroot is only disabled to allow the creation of kernel headers from an official PKGBUILD. |
43 | #noroot | 47 | #noroot |
44 | nosound | 48 | nosound |
49 | nou2f | ||
45 | notv | 50 | notv |
46 | novideo | 51 | novideo |
47 | protocol unix,inet,inet6 | 52 | protocol unix,inet,inet6 |
48 | seccomp | 53 | seccomp |
49 | shell none | 54 | shell none |
55 | tracelog | ||
50 | 56 | ||
51 | disable-mnt | 57 | disable-mnt |
58 | private-cache | ||
52 | private-tmp | 59 | private-tmp |
53 | 60 | ||
54 | memory-deny-write-execute | 61 | memory-deny-write-execute |