diff options
Diffstat (limited to 'etc/gzip.profile')
-rw-r--r-- | etc/gzip.profile | 13 |
1 files changed, 9 insertions, 4 deletions
diff --git a/etc/gzip.profile b/etc/gzip.profile index 27e262f87..810684eae 100644 --- a/etc/gzip.profile +++ b/etc/gzip.profile | |||
@@ -9,12 +9,15 @@ include globals.local | |||
9 | 9 | ||
10 | blacklist /tmp/.X11-unix | 10 | blacklist /tmp/.X11-unix |
11 | 11 | ||
12 | include disable-common.inc | ||
13 | include disable-devel.inc | ||
12 | include disable-exec.inc | 14 | include disable-exec.inc |
13 | include disable-interpreters.inc | 15 | include disable-interpreters.inc |
14 | 16 | include disable-passwdmgr.inc | |
15 | ignore noroot | 17 | include disable-programs.inc |
16 | 18 | ||
17 | apparmor | 19 | apparmor |
20 | caps.drop all | ||
18 | hostname gzip | 21 | hostname gzip |
19 | ipc-namespace | 22 | ipc-namespace |
20 | machine-id | 23 | machine-id |
@@ -23,10 +26,14 @@ no3d | |||
23 | nodbus | 26 | nodbus |
24 | nodvd | 27 | nodvd |
25 | nogroups | 28 | nogroups |
29 | nonewprivs | ||
30 | #noroot | ||
26 | nosound | 31 | nosound |
27 | notv | 32 | notv |
28 | nou2f | 33 | nou2f |
29 | novideo | 34 | novideo |
35 | protocol unix | ||
36 | seccomp | ||
30 | shell none | 37 | shell none |
31 | tracelog | 38 | tracelog |
32 | 39 | ||
@@ -34,5 +41,3 @@ private-cache | |||
34 | private-dev | 41 | private-dev |
35 | 42 | ||
36 | memory-deny-write-execute | 43 | memory-deny-write-execute |
37 | |||
38 | include default.profile | ||