From 81b61d55a3174189d3c810f645f81f0ef48f7db0 Mon Sep 17 00:00:00 2001 From: netblue30 Date: Sat, 24 Jun 2017 08:12:00 -0400 Subject: fix sh in private-bin in several profiles --- etc/filezilla.profile | 2 +- etc/spotify.profile | 2 +- etc/start-tor-browser.profile | 2 +- etc/tar.profile | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/etc/filezilla.profile b/etc/filezilla.profile index 6f0fa4100..3cc6fd601 100644 --- a/etc/filezilla.profile +++ b/etc/filezilla.profile @@ -22,6 +22,6 @@ protocol unix,inet,inet6 seccomp shell none -private-bin filezilla,uname,sh,python,lsb_release,fzputtygen,fzsftp +private-bin filezilla,uname,sh,bash,dash,python,lsb_release,fzputtygen,fzsftp private-dev private-tmp diff --git a/etc/spotify.profile b/etc/spotify.profile index 206a4b364..e7890d23f 100644 --- a/etc/spotify.profile +++ b/etc/spotify.profile @@ -34,7 +34,7 @@ shell none noexec ${HOME} noexec /tmp -private-bin spotify,bash,sh +private-bin spotify,bash,sh,dash private-etc fonts,machine-id,pulse,resolv.conf private-dev private-tmp diff --git a/etc/start-tor-browser.profile b/etc/start-tor-browser.profile index 465d8dfd5..f15e5d8ac 100644 --- a/etc/start-tor-browser.profile +++ b/etc/start-tor-browser.profile @@ -21,7 +21,7 @@ seccomp shell none tracelog -private-bin bash,grep,tail,env,gpg,id,readlink,dirname,test,mkdir,ln,sed,cp,rm,getconf +private-bin bash,dash,sh,grep,tail,env,gpg,id,readlink,dirname,test,mkdir,ln,sed,cp,rm,getconf private-etc fonts private-dev private-tmp diff --git a/etc/tar.profile b/etc/tar.profile index 577e795f8..c2d089e71 100644 --- a/etc/tar.profile +++ b/etc/tar.profile @@ -20,6 +20,6 @@ shell none tracelog # support compressed archives -private-bin sh,tar,gtar,compress,gzip,lzma,xz,bzip2,lbzip2,lzip,lzop +private-bin sh,bash,dash,tar,gtar,compress,gzip,lzma,xz,bzip2,lbzip2,lzip,lzop private-dev private-etc passwd,group,localtime -- cgit v1.2.3-54-g00ecf