From 632ef90354805ad151628d1ba1fb86840f6c3311 Mon Sep 17 00:00:00 2001
From: Vincent43 <31109921+Vincent43@users.noreply.github.com>
Date: Sat, 3 Feb 2018 13:37:25 +0000
Subject: Apparmor: minor fixes

1. Allow for seven digit PID same as upstream do https://gitlab.com/apparmor/apparmor/commit/630cb2a981cdc731847e8fdaafc45bcd337fe747

2. Fixed dbus functionality. Disabled by default.
---
 etc/firejail-default | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

(limited to 'etc/firejail-default')

diff --git a/etc/firejail-default b/etc/firejail-default
index e532af430..842d5a0c4 100644
--- a/etc/firejail-default
+++ b/etc/firejail-default
@@ -8,14 +8,16 @@
 # We don't know if this definition is available outside Debian and Ubuntu, so
 # we declare our own here.
 ##########
-@{PID}={[1-9],[1-9][0-9],[1-9][0-9][0-9],[1-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9][0-9]}
+@{PID}={[1-9],[1-9][0-9],[1-9][0-9][0-9],[1-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9][0-9],[1-4][0-9][0-9][0-9][0-9][0-9][0-9]}
 
 profile firejail-default flags=(attach_disconnected,mediate_deleted) {
 
 ##########
-# D-Bus is a huge security hole. Uncomment this line if you need D-Bus
+# D-Bus is a huge security hole. Uncomment those lines if you need D-Bus
 # functionality.
 ##########
+##include <abstractions/dbus-strict>
+##include <abstractions/dbus-session-strict>
 #dbus,
 
 ##########
-- 
cgit v1.2.3-54-g00ecf