1 files changed, 5 insertions, 43 deletions
diff --git a/etc/profile-a-l/gnome-system-log.profile b/etc/profile-a-l/gnome-system-log.profile
index b3bc7499c..0d6116f4f 100644
--- a/etc/profile-a-l/gnome-system-log.profile
+++ b/etc/profile-a-l/gnome-system-log.profile
@@ -6,51 +6,13 @@ include gnome-system-log.local
 # Persistent global definitions
 include globals.local
-include disable-common.inc
+# 'net none' breaks dbus
-include disable-devel.inc
+ignore net none
-include disable-exec.inc
-include disable-interpreters.inc
-include disable-programs.inc
-include disable-shell.inc
-include disable-xdg.inc
-whitelist /var/log
-include whitelist-common.inc
-include whitelist-usr-share-common.inc
-include whitelist-var-common.inc
-apparmor
-caps.drop all
-ipc-namespace
-#net none # breaks dbus
-no3d
-nodvd
-# When using 'volatile' storage (https://www.freedesktop.org/software/systemd/man/journald.conf.html),
-# put 'ignore nogroups' and 'ignore noroot' in your gnome-system-log.local.
-nogroups
-noinput
-nonewprivs
-noroot
-nosound
-notv
-nou2f
-novideo
-protocol unix
-seccomp
-disable-mnt
 private-bin gnome-system-log
-private-cache
-private-dev
-private-etc
 private-lib
-private-tmp
-writable-var-log
-#dbus-user none
-#dbus-system none
 memory-deny-write-execute
-# Add 'ignore read-only ${HOME}' to your gnome-system-log.local if you export logs to a file under your ${HOME}.
-read-only ${HOME}
+# Redirect
-restrict-namespaces
+include system-log-common.profile

diff --git a/etc/profile-a-l/gnome-system-log.profile b/etc/profile-a-l/gnome-system-log.profile index b3bc7499c..0d6116f4f 100644 --- a/etc/profile-a-l/gnome-system-log.profile +++ b/etc/profile-a-l/gnome-system-log.profile
@@ -6,51 +6,13 @@ include gnome-system-log.local
6	# Persistent global definitions	6	# Persistent global definitions
7	include globals.local	7	include globals.local
8		8
9	include disable-common.inc	9	# 'net none' breaks dbus
10	include disable-devel.inc	10	ignore net none
11	include disable-exec.inc
12	include disable-interpreters.inc
13	include disable-programs.inc
14	include disable-shell.inc
15	include disable-xdg.inc
16		11
17	whitelist /var/log
18	include whitelist-common.inc
19	include whitelist-usr-share-common.inc
20	include whitelist-var-common.inc
21
22	apparmor
23	caps.drop all
24	ipc-namespace
25	#net none # breaks dbus
26	no3d
27	nodvd
28	# When using 'volatile' storage (https://www.freedesktop.org/software/systemd/man/journald.conf.html),
29	# put 'ignore nogroups' and 'ignore noroot' in your gnome-system-log.local.
30	nogroups
31	noinput
32	nonewprivs
33	noroot
34	nosound
35	notv
36	nou2f
37	novideo
38	protocol unix
39	seccomp
40
41	disable-mnt
42	private-bin gnome-system-log	12	private-bin gnome-system-log
43	private-cache
44	private-dev
45	private-etc
46	private-lib	13	private-lib
47	private-tmp
48	writable-var-log
49
50	#dbus-user none
51	#dbus-system none
52		14
53	memory-deny-write-execute	15	memory-deny-write-execute
54	# Add 'ignore read-only ${HOME}' to your gnome-system-log.local if you export logs to a file under your ${HOME}.	16
55	read-only ${HOME}	17	# Redirect
56	restrict-namespaces	18	include system-log-common.profile