From b59225f5d987d0467c659b0b5c0630009d519e98 Mon Sep 17 00:00:00 2001
From: smitsohu <smitsohu@gmail.com>
Date: Tue, 18 Jun 2019 18:52:18 +0200
Subject: use 'x11 none' option

... instead of just blacklisting the X11 socket.

Systematically added to all profiles with 'net none' and
'blacklist /tmp/.X11-unix', and a few more
---
 etc/atool.profile | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'etc/atool.profile')

diff --git a/etc/atool.profile b/etc/atool.profile
index 7bcfdb935..c9d950259 100644
--- a/etc/atool.profile
+++ b/etc/atool.profile
@@ -10,8 +10,6 @@ include globals.local
 # Allow perl (blacklisted by disable-interpreters.inc)
 include allow-perl.inc
 
-blacklist /tmp/.X11-unix
-
 include disable-common.inc
 # include disable-devel.inc
 include disable-exec.inc
@@ -40,6 +38,7 @@ protocol unix
 seccomp
 shell none
 tracelog
+x11 none
 
 # private-bin atool,perl
 private-cache
-- 
cgit v1.2.3-54-g00ecf