From f38c6802638bef80932048534b867cfe1f9922e7 Mon Sep 17 00:00:00 2001
From: rusty-snake <41237666+rusty-snake@users.noreply.github.com>
Date: Fri, 19 Mar 2021 15:32:57 +0100
Subject: man.progile: readonly instead of whitelist

---
 etc/profile-m-z/man.profile | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

diff --git a/etc/profile-m-z/man.profile b/etc/profile-m-z/man.profile
index 965750bf0..678bb0b8a 100644
--- a/etc/profile-m-z/man.profile
+++ b/etc/profile-m-z/man.profile
@@ -19,16 +19,16 @@ include disable-passwdmgr.inc
 include disable-programs.inc
 include disable-xdg.inc
 
-mkdir ${HOME}/.local/share/man
-whitelist ${HOME}/.local/share/man
-whitelist ${HOME}/.manpath
+#mkdir ${HOME}/.local/share/man
+#whitelist ${HOME}/.local/share/man
+#whitelist ${HOME}/.manpath
 whitelist /usr/share/groff
 whitelist /usr/share/info
 whitelist /usr/share/lintian
 whitelist /usr/share/locale
 whitelist /usr/share/man
 whitelist /var/cache/man
-include whitelist-common.inc
+#include whitelist-common.inc
 include whitelist-runuser-common.inc
 include whitelist-usr-share-common.inc
 include whitelist-var-common.inc
@@ -58,9 +58,11 @@ disable-mnt
 private-cache
 private-dev
 private-etc alternatives,fonts,groff,locale,locale.alias,locale.conf,man_db.conf,manpath.config,selinux,sysless,xdg
-private-tmp
+#private-tmp
 
 dbus-user none
 dbus-system none
 
 memory-deny-write-execute
+read-only ${HOME}
+read-only /tmp
-- 
cgit v1.2.3-54-g00ecf