diff options
Diffstat (limited to 'etc/profile-a-l/links.profile')
-rw-r--r-- | etc/profile-a-l/links.profile | 22 |
1 files changed, 10 insertions, 12 deletions
diff --git a/etc/profile-a-l/links.profile b/etc/profile-a-l/links.profile index ccc77f274..272bc4f3a 100644 --- a/etc/profile-a-l/links.profile +++ b/etc/profile-a-l/links.profile | |||
@@ -17,8 +17,8 @@ include disable-devel.inc | |||
17 | include disable-exec.inc | 17 | include disable-exec.inc |
18 | include disable-interpreters.inc | 18 | include disable-interpreters.inc |
19 | include disable-passwdmgr.inc | 19 | include disable-passwdmgr.inc |
20 | # you may want to noblacklist files/directories blacklisted in | 20 | # Additional noblacklist files/directories (blacklisted in disable-programs.inc) |
21 | # disable-programs.inc and used as associated programs | 21 | # used as associated programs can be added in your links.local. |
22 | include disable-programs.inc | 22 | include disable-programs.inc |
23 | include disable-xdg.inc | 23 | include disable-xdg.inc |
24 | 24 | ||
@@ -30,19 +30,19 @@ include whitelist-var-common.inc | |||
30 | 30 | ||
31 | caps.drop all | 31 | caps.drop all |
32 | ipc-namespace | 32 | ipc-namespace |
33 | # comment machine-id (or put 'ignore machine-id' in your links.local) if you want | 33 | # Add 'ignore machine-id' to your links.local if you want to restrict access to |
34 | # to allow access only to user-configured associated media player | 34 | # the user-configured associated media player. |
35 | machine-id | 35 | machine-id |
36 | netfilter | 36 | netfilter |
37 | # comment no3d (or put 'ignore no3d' in your links.local) if you want | 37 | # Add 'ignore no3d' to your links.local if you want to restrict access to |
38 | # to allow access only to user-configured associated media player | 38 | # the user-configured associated media player. |
39 | no3d | 39 | no3d |
40 | nodvd | 40 | nodvd |
41 | nogroups | 41 | nogroups |
42 | nonewprivs | 42 | nonewprivs |
43 | noroot | 43 | noroot |
44 | # comment nosound (or put 'ignore nosound' in your links.local) if you want | 44 | # Add 'ignore nosound' to your links.local if you want to restrict access to |
45 | # to allow access only to user-configured associated media player | 45 | # the user-configured associated media player. |
46 | nosound | 46 | nosound |
47 | notv | 47 | notv |
48 | nou2f | 48 | nou2f |
@@ -53,14 +53,12 @@ shell none | |||
53 | tracelog | 53 | tracelog |
54 | 54 | ||
55 | disable-mnt | 55 | disable-mnt |
56 | # if you want to use user-configured programs add 'private-bin PROGRAM1,PROGRAM2' to your links.local | 56 | # Add 'private-bin PROGRAM1,PROGRAM2' to your links.local if you want to use user-configured programs. |
57 | # or append 'PROGRAM1,PROGRAM2' to this private-bin line | ||
58 | private-bin links,sh | 57 | private-bin links,sh |
59 | private-cache | 58 | private-cache |
60 | private-dev | 59 | private-dev |
61 | private-etc alternatives,ca-certificates,crypto-policies,nsswitch.conf,pki,resolv.conf,ssl | 60 | private-etc alternatives,ca-certificates,crypto-policies,nsswitch.conf,pki,resolv.conf,ssl |
62 | # Uncomment the following line (or put it in your links.local) allow external | 61 | # Add the next line to your links.local to allow external media players. |
63 | # media players | ||
64 | # private-etc alsa,asound.conf,machine-id,openal,pulse | 62 | # private-etc alsa,asound.conf,machine-id,openal,pulse |
65 | private-tmp | 63 | private-tmp |
66 | 64 | ||