diff options
Diffstat (limited to 'etc/inc')
-rw-r--r-- | etc/inc/disable-common.inc | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc index faed10008..010cb05b6 100644 --- a/etc/inc/disable-common.inc +++ b/etc/inc/disable-common.inc | |||
@@ -319,9 +319,13 @@ read-only ${HOME}/.zshenv | |||
319 | read-only ${HOME}/.zshrc | 319 | read-only ${HOME}/.zshrc |
320 | read-only ${HOME}/.zshrc.local | 320 | read-only ${HOME}/.zshrc.local |
321 | 321 | ||
322 | # Remote access - ${HOME}/.ssh directory blacklisted in top secret section below | 322 | # Remote access (used only by sshd; should always be blacklisted) |
323 | blacklist ${HOME}/.rhosts | 323 | blacklist ${HOME}/.rhosts |
324 | blacklist ${HOME}/.shosts | 324 | blacklist ${HOME}/.shosts |
325 | blacklist ${HOME}/.ssh/authorized_keys | ||
326 | blacklist ${HOME}/.ssh/authorized_keys2 | ||
327 | blacklist ${HOME}/.ssh/environment | ||
328 | blacklist ${HOME}/.ssh/rc | ||
325 | blacklist /etc/hosts.equiv | 329 | blacklist /etc/hosts.equiv |
326 | 330 | ||
327 | # Initialization files that allow arbitrary command execution | 331 | # Initialization files that allow arbitrary command execution |
@@ -354,6 +358,8 @@ read-only ${HOME}/.nanorc | |||
354 | read-only ${HOME}/.npmrc | 358 | read-only ${HOME}/.npmrc |
355 | read-only ${HOME}/.pythonrc.py | 359 | read-only ${HOME}/.pythonrc.py |
356 | read-only ${HOME}/.reportbugrc | 360 | read-only ${HOME}/.reportbugrc |
361 | read-only ${HOME}/.ssh/config | ||
362 | read-only ${HOME}/.ssh/config.d | ||
357 | read-only ${HOME}/.tmux.conf | 363 | read-only ${HOME}/.tmux.conf |
358 | read-only ${HOME}/.vim | 364 | read-only ${HOME}/.vim |
359 | read-only ${HOME}/.viminfo | 365 | read-only ${HOME}/.viminfo |