From 110a74f094abcb4f2763d76e204fb3c9743fa9a1 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@protonmail.com>
Date: Tue, 13 Jul 2021 07:26:05 -0400
Subject: disable-common.inc update

---
 README                     |  1 +
 etc/inc/disable-common.inc | 15 +++++++++++++++
 2 files changed, 16 insertions(+)

diff --git a/README b/README
index c2abf32d7..c6eedbe5f 100644
--- a/README
+++ b/README
@@ -1059,6 +1059,7 @@ Vladimir Schowalter (https://github.com/VladimirSchowalter20)
 Vladislav Nepogodin (https://github.com/vnepogodin)
 	- added Librewolf profiles
 	- added Sway profile
+	- fix CLion profile
 xee5ch (https://github.com/xee5ch)
 	- skypeforlinux profile
 Ypnose (https://github.com/Ypnose)
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc
index 4c83284ee..1283a3a3d 100644
--- a/etc/inc/disable-common.inc
+++ b/etc/inc/disable-common.inc
@@ -162,6 +162,9 @@ deny  ${HOME}/.local/share/systemd
 deny  /var/lib/systemd
 deny  ${PATH}/systemd-run
 deny  ${RUNUSER}/systemd
+deny  ${PATH}/systemctl
+deny  /etc/systemd/system
+deny  /etc/systemd/network
 # creates problems on Arch where /etc/resolv.conf is a symlink to /var/run/systemd/resolve/resolv.conf
 #blacklist /var/run/systemd
 
@@ -257,6 +260,18 @@ deny  /etc/modules*
 deny  /etc/logrotate*
 deny  /etc/adduser.conf
 
+# hide config for various intrusion detection systems
+deny  /etc/rkhunter.conf
+deny  /var/lib/rkhunter
+deny  /etc/chkrootkit.conf
+deny  /etc/lynis
+deny  /etc/aide
+deny  /etc/logcheck
+deny  /etc/tripwire
+deny  /etc/snort
+deny  /etc/fail2ban.conf
+deny  /etc/suricata
+
 # Startup files
 read-only ${HOME}/.antigen
 read-only ${HOME}/.bash_aliases
-- 
cgit v1.2.3-70-g09d2