diff options
Diffstat (limited to 'etc/profile-m-z/server.profile')
| -rw-r--r-- | etc/profile-m-z/server.profile | 10 |
1 files changed, 7 insertions, 3 deletions
diff --git a/etc/profile-m-z/server.profile b/etc/profile-m-z/server.profile index 9e40796a6..fd7ffb38d 100644 --- a/etc/profile-m-z/server.profile +++ b/etc/profile-m-z/server.profile | |||
| @@ -33,6 +33,7 @@ include globals.local | |||
| 33 | 33 | ||
| 34 | noblacklist /sbin | 34 | noblacklist /sbin |
| 35 | noblacklist /usr/sbin | 35 | noblacklist /usr/sbin |
| 36 | noblacklist /etc/init.d | ||
| 36 | # noblacklist /var/opt | 37 | # noblacklist /var/opt |
| 37 | 38 | ||
| 38 | blacklist /tmp/.X11-unix | 39 | blacklist /tmp/.X11-unix |
| @@ -50,7 +51,9 @@ include disable-xdg.inc | |||
| 50 | # include whitelist-usr-share-common.inc | 51 | # include whitelist-usr-share-common.inc |
| 51 | # include whitelist-var-common.inc | 52 | # include whitelist-var-common.inc |
| 52 | 53 | ||
| 53 | apparmor | 54 | # people use to install servers all over the place! |
| 55 | # apparmor runs executable only from default system locations | ||
| 56 | # apparmor | ||
| 54 | caps | 57 | caps |
| 55 | # ipc-namespace | 58 | # ipc-namespace |
| 56 | machine-id | 59 | machine-id |
| @@ -59,15 +62,16 @@ no3d | |||
| 59 | nodvd | 62 | nodvd |
| 60 | # nogroups | 63 | # nogroups |
| 61 | noinput | 64 | noinput |
| 62 | # nonewprivs | 65 | nonewprivs |
| 63 | # noroot | 66 | # noroot |
| 64 | nosound | 67 | nosound |
| 65 | notv | 68 | notv |
| 66 | nou2f | 69 | nou2f |
| 67 | novideo | 70 | novideo |
| 68 | # protocol unix,inet,inet6,netlink | 71 | protocol unix,inet,inet6,netlink,packet |
| 69 | seccomp | 72 | seccomp |
| 70 | # shell none | 73 | # shell none |
| 74 | tab # allow tab completion | ||
| 71 | 75 | ||
| 72 | disable-mnt | 76 | disable-mnt |
| 73 | private | 77 | private |