From b77af9bad3c0cfe18d11216c4543cf74660965f0 Mon Sep 17 00:00:00 2001
From: mjudtmann <mjudtmann@gmx.net>
Date: Mon, 17 Aug 2015 15:20:47 +0200
Subject: Update disable-mgmt.inc

Jailed applications should not be able to change the configuration of firejail.
---
 etc/disable-mgmt.inc | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/etc/disable-mgmt.inc b/etc/disable-mgmt.inc
index f04619ea0..8cc346ae1 100644
--- a/etc/disable-mgmt.inc
+++ b/etc/disable-mgmt.inc
@@ -10,3 +10,7 @@ blacklist ${PATH}/su
 blacklist ${PATH}/sudo
 blacklist ${PATH}/xinput
 blacklist ${PATH}/strace
+
+# Prevent manipulation of firejail configuration
+blacklist /etc/firejail
+blacklist ${HOME}/.config/firejail
-- 
cgit v1.2.3-54-g00ecf