diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/inc/disable-common.inc | 4 | ||||
-rw-r--r-- | etc/inc/disable-programs.inc | 2 | ||||
-rw-r--r-- | etc/profile-a-l/i3.profile | 4 |
3 files changed, 10 insertions, 0 deletions
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc index 55aabbc73..14f7d8cf7 100644 --- a/etc/inc/disable-common.inc +++ b/etc/inc/disable-common.inc | |||
@@ -167,6 +167,10 @@ blacklist ${RUNUSER}/gnome-session-leader-fifo | |||
167 | blacklist ${RUNUSER}/gnome-shell | 167 | blacklist ${RUNUSER}/gnome-shell |
168 | blacklist ${RUNUSER}/gsconnect | 168 | blacklist ${RUNUSER}/gsconnect |
169 | 169 | ||
170 | # i3 IPC socket (allows arbitrary shell script execution) | ||
171 | blacklist ${RUNUSER}/i3/ipc-socket.* | ||
172 | blacklist /tmp/i3-*/ipc-socket.* | ||
173 | |||
170 | # systemd | 174 | # systemd |
171 | blacklist ${HOME}/.config/systemd | 175 | blacklist ${HOME}/.config/systemd |
172 | blacklist ${HOME}/.local/share/systemd | 176 | blacklist ${HOME}/.local/share/systemd |
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc index 73876fde3..d2f8b8cfa 100644 --- a/etc/inc/disable-programs.inc +++ b/etc/inc/disable-programs.inc | |||
@@ -1251,11 +1251,13 @@ blacklist ${HOME}/yt-dlp.conf | |||
1251 | blacklist ${HOME}/yt-dlp.conf.txt | 1251 | blacklist ${HOME}/yt-dlp.conf.txt |
1252 | blacklist ${RUNUSER}/*firefox* | 1252 | blacklist ${RUNUSER}/*firefox* |
1253 | blacklist ${RUNUSER}/akonadi | 1253 | blacklist ${RUNUSER}/akonadi |
1254 | blacklist ${RUNUSER}/i3 | ||
1254 | blacklist ${RUNUSER}/psd/*firefox* | 1255 | blacklist ${RUNUSER}/psd/*firefox* |
1255 | blacklist ${RUNUSER}/qutebrowser | 1256 | blacklist ${RUNUSER}/qutebrowser |
1256 | blacklist /etc/ssmtp | 1257 | blacklist /etc/ssmtp |
1257 | blacklist /tmp/.wine-* | 1258 | blacklist /tmp/.wine-* |
1258 | blacklist /tmp/akonadi-* | 1259 | blacklist /tmp/akonadi-* |
1260 | blacklist /tmp/i3-* | ||
1259 | blacklist /tmp/lwjgl_* | 1261 | blacklist /tmp/lwjgl_* |
1260 | blacklist /var/games/nethack | 1262 | blacklist /var/games/nethack |
1261 | blacklist /var/games/slashem | 1263 | blacklist /var/games/slashem |
diff --git a/etc/profile-a-l/i3.profile b/etc/profile-a-l/i3.profile index 2268072ef..412e31762 100644 --- a/etc/profile-a-l/i3.profile +++ b/etc/profile-a-l/i3.profile | |||
@@ -8,6 +8,10 @@ include globals.local | |||
8 | 8 | ||
9 | # all applications started in i3 will run in this profile | 9 | # all applications started in i3 will run in this profile |
10 | noblacklist ${HOME}/.config/i3 | 10 | noblacklist ${HOME}/.config/i3 |
11 | noblacklist ${RUNUSER}/i3 | ||
12 | noblacklist ${RUNUSER}/i3/ipc-socket.* | ||
13 | noblacklist /tmp/i3-* | ||
14 | noblacklist /tmp/i3-*/ipc-socket.* | ||
11 | include disable-common.inc | 15 | include disable-common.inc |
12 | 16 | ||
13 | caps.drop all | 17 | caps.drop all |