diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/inc/disable-passwdmgr.inc | 1 | ||||
-rw-r--r-- | etc/profile-a-l/kcalc.profile | 12 | ||||
-rw-r--r-- | etc/profile-a-l/keepassxc.profile | 2 | ||||
-rw-r--r-- | etc/profile-m-z/okular.profile | 8 | ||||
-rw-r--r-- | etc/profile-m-z/spectacle.profile | 2 | ||||
-rw-r--r-- | etc/profile-m-z/virtualbox.profile | 2 |
6 files changed, 25 insertions, 2 deletions
diff --git a/etc/inc/disable-passwdmgr.inc b/etc/inc/disable-passwdmgr.inc index 316378cb8..3ed9a1b14 100644 --- a/etc/inc/disable-passwdmgr.inc +++ b/etc/inc/disable-passwdmgr.inc | |||
@@ -7,6 +7,7 @@ blacklist ${HOME}/.config/KeePass | |||
7 | blacklist ${HOME}/.config/keepass | 7 | blacklist ${HOME}/.config/keepass |
8 | blacklist ${HOME}/.config/keepassx | 8 | blacklist ${HOME}/.config/keepassx |
9 | blacklist ${HOME}/.config/keepassxc | 9 | blacklist ${HOME}/.config/keepassxc |
10 | blacklist ${HOME}/.config/KeePassXCrc | ||
10 | blacklist ${HOME}/.config/Sinew Software Systems | 11 | blacklist ${HOME}/.config/Sinew Software Systems |
11 | blacklist ${HOME}/.fpm | 12 | blacklist ${HOME}/.fpm |
12 | blacklist ${HOME}/.keepass | 13 | blacklist ${HOME}/.keepass |
diff --git a/etc/profile-a-l/kcalc.profile b/etc/profile-a-l/kcalc.profile index fa82e76f3..c1414472b 100644 --- a/etc/profile-a-l/kcalc.profile +++ b/etc/profile-a-l/kcalc.profile | |||
@@ -15,6 +15,7 @@ include disable-interpreters.inc | |||
15 | include disable-passwdmgr.inc | 15 | include disable-passwdmgr.inc |
16 | include disable-programs.inc | 16 | include disable-programs.inc |
17 | include disable-shell.inc | 17 | include disable-shell.inc |
18 | include disable-xdg.inc | ||
18 | 19 | ||
19 | mkdir ${HOME}/.local/share/kxmlgui5/kcalc | 20 | mkdir ${HOME}/.local/share/kxmlgui5/kcalc |
20 | mkfile ${HOME}/.config/kcalcrc | 21 | mkfile ${HOME}/.config/kcalcrc |
@@ -24,7 +25,12 @@ whitelist ${HOME}/.config/kcalcrc | |||
24 | whitelist ${HOME}/.kde/share/config/kcalcrc | 25 | whitelist ${HOME}/.kde/share/config/kcalcrc |
25 | whitelist ${HOME}/.kde4/share/config/kcalcrc | 26 | whitelist ${HOME}/.kde4/share/config/kcalcrc |
26 | whitelist ${HOME}/.local/share/kxmlgui5/kcalc | 27 | whitelist ${HOME}/.local/share/kxmlgui5/kcalc |
28 | whitelist /usr/share/config.kcfg/kcalc.kcfg | ||
29 | whitelist /usr/share/kcalc | ||
30 | whitelist /usr/share/kconf_update/kcalcrc.upd | ||
27 | include whitelist-common.inc | 31 | include whitelist-common.inc |
32 | include whitelist-runuser-common.inc | ||
33 | include whitelist-usr-share-common.inc | ||
28 | include whitelist-var-common.inc | 34 | include whitelist-var-common.inc |
29 | 35 | ||
30 | apparmor | 36 | apparmor |
@@ -41,13 +47,19 @@ nou2f | |||
41 | novideo | 47 | novideo |
42 | protocol unix | 48 | protocol unix |
43 | seccomp | 49 | seccomp |
50 | seccomp.block-secondary | ||
44 | shell none | 51 | shell none |
52 | tracelog | ||
45 | 53 | ||
46 | disable-mnt | 54 | disable-mnt |
47 | private-bin kcalc | 55 | private-bin kcalc |
56 | private-cache | ||
48 | private-dev | 57 | private-dev |
58 | private-etc alternatives,fonts,ld.so.cache,locale,locale.conf | ||
49 | # private-lib - problems on Arch | 59 | # private-lib - problems on Arch |
50 | private-tmp | 60 | private-tmp |
51 | 61 | ||
52 | dbus-user none | 62 | dbus-user none |
53 | dbus-system none | 63 | dbus-system none |
64 | |||
65 | #memory-deny-write-execute | ||
diff --git a/etc/profile-a-l/keepassxc.profile b/etc/profile-a-l/keepassxc.profile index 11c279911..3c7737063 100644 --- a/etc/profile-a-l/keepassxc.profile +++ b/etc/profile-a-l/keepassxc.profile | |||
@@ -10,6 +10,7 @@ noblacklist ${HOME}/*.kdb | |||
10 | noblacklist ${HOME}/*.kdbx | 10 | noblacklist ${HOME}/*.kdbx |
11 | noblacklist ${HOME}/.cache/keepassxc | 11 | noblacklist ${HOME}/.cache/keepassxc |
12 | noblacklist ${HOME}/.config/keepassxc | 12 | noblacklist ${HOME}/.config/keepassxc |
13 | noblacklist ${HOME}/.config/KeePassXCrc | ||
13 | noblacklist ${HOME}/.keepassxc | 14 | noblacklist ${HOME}/.keepassxc |
14 | noblacklist ${DOCUMENTS} | 15 | noblacklist ${DOCUMENTS} |
15 | 16 | ||
@@ -51,6 +52,7 @@ include disable-xdg.inc | |||
51 | #mkdir ${HOME}/.config/keepassxc | 52 | #mkdir ${HOME}/.config/keepassxc |
52 | #whitelist ${HOME}/.cache/keepassxc | 53 | #whitelist ${HOME}/.cache/keepassxc |
53 | #whitelist ${HOME}/.config/keepassxc | 54 | #whitelist ${HOME}/.config/keepassxc |
55 | #whitelist ${HOME}/.config/KeePassXCrc | ||
54 | #include whitelist-common.inc | 56 | #include whitelist-common.inc |
55 | 57 | ||
56 | whitelist /usr/share/keepassxc | 58 | whitelist /usr/share/keepassxc |
diff --git a/etc/profile-m-z/okular.profile b/etc/profile-m-z/okular.profile index e21ac997a..3f75d4f09 100644 --- a/etc/profile-m-z/okular.profile +++ b/etc/profile-m-z/okular.profile | |||
@@ -28,10 +28,16 @@ include disable-programs.inc | |||
28 | include disable-shell.inc | 28 | include disable-shell.inc |
29 | include disable-xdg.inc | 29 | include disable-xdg.inc |
30 | 30 | ||
31 | whitelist /usr/share/config.kcfg | 31 | whitelist /usr/share/config.kcfg/gssettings.kcfg |
32 | whitelist /usr/share/config.kcfg/pdfsettings.kcfg | ||
33 | whitelist /usr/share/config.kcfg/okular.kcfg | ||
34 | whitelist /usr/share/config.kcfg/okular_core.kcfg | ||
35 | whitelist /usr/share/ghostscript | ||
36 | whitelist /usr/share/kconf_update/okular.upd | ||
32 | whitelist /usr/share/kxmlgui5/okular | 37 | whitelist /usr/share/kxmlgui5/okular |
33 | whitelist /usr/share/okular | 38 | whitelist /usr/share/okular |
34 | whitelist /usr/share/poppler | 39 | whitelist /usr/share/poppler |
40 | include whitelist-runuser-common.inc | ||
35 | include whitelist-usr-share-common.inc | 41 | include whitelist-usr-share-common.inc |
36 | include whitelist-var-common.inc | 42 | include whitelist-var-common.inc |
37 | 43 | ||
diff --git a/etc/profile-m-z/spectacle.profile b/etc/profile-m-z/spectacle.profile index cedff0b83..f99246ad6 100644 --- a/etc/profile-m-z/spectacle.profile +++ b/etc/profile-m-z/spectacle.profile | |||
@@ -26,6 +26,8 @@ include disable-xdg.inc | |||
26 | mkfile ${HOME}/.config/spectaclerc | 26 | mkfile ${HOME}/.config/spectaclerc |
27 | whitelist ${HOME}/.config/spectaclerc | 27 | whitelist ${HOME}/.config/spectaclerc |
28 | whitelist ${PICTURES} | 28 | whitelist ${PICTURES} |
29 | whitelist /usr/share/kconf_update/spectacle_newConfig.upd | ||
30 | whitelist /usr/share/kconf_update/spectacle_shortcuts.upd | ||
29 | include whitelist-common.inc | 31 | include whitelist-common.inc |
30 | include whitelist-runuser-common.inc | 32 | include whitelist-runuser-common.inc |
31 | include whitelist-usr-share-common.inc | 33 | include whitelist-usr-share-common.inc |
diff --git a/etc/profile-m-z/virtualbox.profile b/etc/profile-m-z/virtualbox.profile index 64d787bfb..c22fb0ff9 100644 --- a/etc/profile-m-z/virtualbox.profile +++ b/etc/profile-m-z/virtualbox.profile | |||
@@ -44,7 +44,7 @@ shell none | |||
44 | tracelog | 44 | tracelog |
45 | 45 | ||
46 | #disable-mnt | 46 | #disable-mnt |
47 | #private-bin basename,bash,env,gawk,grep,ps,readlink,sh,virtualbox,VirtualBox,VBox*,vbox*,whoami | 47 | #private-bin awk,basename,bash,env,gawk,grep,ps,readlink,sh,virtualbox,VirtualBox,VBox*,vbox*,whoami |
48 | private-cache | 48 | private-cache |
49 | private-etc alsa,asound.conf,ca-certificates,conf.d,crypto-policies,dconf,fonts,hostname,hosts,ld.so.cache,localtime,machine-id,pki,pulse,resolv.conf,ssl | 49 | private-etc alsa,asound.conf,ca-certificates,conf.d,crypto-policies,dconf,fonts,hostname,hosts,ld.so.cache,localtime,machine-id,pki,pulse,resolv.conf,ssl |
50 | private-tmp | 50 | private-tmp |