2 files changed, 16 insertions, 0 deletions

diff --git a/README b/README
index c2abf32d7..c6eedbe5f 100644
--- a/README
+++ b/README
@@ -1059,6 +1059,7 @@ Vladimir Schowalter (https://github.com/VladimirSchowalter20)
 Vladislav Nepogodin (https://github.com/vnepogodin)
         - added Librewolf profiles
         - added Sway profile
+        - fix CLion profile
 xee5ch (https://github.com/xee5ch)
         - skypeforlinux profile
 Ypnose (https://github.com/Ypnose)
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc
index 4c83284ee..1283a3a3d 100644
--- a/etc/inc/disable-common.inc
+++ b/etc/inc/disable-common.inc
@@ -162,6 +162,9 @@ deny  ${HOME}/.local/share/systemd
 deny  /var/lib/systemd
 deny  ${PATH}/systemd-run
 deny  ${RUNUSER}/systemd
+deny  ${PATH}/systemctl
+deny  /etc/systemd/system
+deny  /etc/systemd/network
 # creates problems on Arch where /etc/resolv.conf is a symlink to /var/run/systemd/resolve/resolv.conf
 #blacklist /var/run/systemd
 
@@ -257,6 +260,18 @@ deny  /etc/modules*
 deny  /etc/logrotate*
 deny  /etc/adduser.conf
 
+# hide config for various intrusion detection systems
+deny  /etc/rkhunter.conf
+deny  /var/lib/rkhunter
+deny  /etc/chkrootkit.conf
+deny  /etc/lynis
+deny  /etc/aide
+deny  /etc/logcheck
+deny  /etc/tripwire
+deny  /etc/snort
+deny  /etc/fail2ban.conf
+deny  /etc/suricata
+
 # Startup files
 read-only ${HOME}/.antigen
 read-only ${HOME}/.bash_aliases