From a3a41b8fff7763862b07db00b0357f20774687f5 Mon Sep 17 00:00:00 2001 From: glitsj16 Date: Fri, 11 Aug 2023 03:54:39 +0000 Subject: profiles: improvements to profiles using private (#5946) Changes: * comment `include whitelist-common.inc` when using `private` * drop `private` on profiles that access files in `${HOME}` * use `#` in comments Relates to #903. --- etc/profile-a-l/dbus-send.profile | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) (limited to 'etc/profile-a-l/dbus-send.profile') diff --git a/etc/profile-a-l/dbus-send.profile b/etc/profile-a-l/dbus-send.profile index 80790bb0c..70bd7370d 100644 --- a/etc/profile-a-l/dbus-send.profile +++ b/etc/profile-a-l/dbus-send.profile @@ -19,7 +19,7 @@ include disable-shell.inc include disable-write-mnt.inc include disable-xdg.inc -include whitelist-common.inc +#include whitelist-common.inc # see #903 include whitelist-runuser-common.inc include whitelist-usr-share-common.inc include whitelist-var-common.inc @@ -28,8 +28,7 @@ apparmor caps.drop all ipc-namespace machine-id -# Breaks abstract sockets -#net none +#net none # breaks abstract sockets netfilter no3d nodvd -- cgit v1.2.3-70-g09d2