From f29f815c003adb55ac88b58b541e66ac38efe63b Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@protonmail.com>
Date: Sun, 10 Apr 2022 20:25:28 -0400
Subject: small fixes

---
 etc/profile-m-z/server.profile | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

(limited to 'etc/profile-m-z/server.profile')

diff --git a/etc/profile-m-z/server.profile b/etc/profile-m-z/server.profile
index 9e40796a6..f1cf0ca59 100644
--- a/etc/profile-m-z/server.profile
+++ b/etc/profile-m-z/server.profile
@@ -33,6 +33,9 @@ include globals.local
 
 noblacklist /sbin
 noblacklist /usr/sbin
+noblacklist /etc/init.d
+noblacklist /var/lib/apt
+noblacklist /var/cache/apt
 # noblacklist /var/opt
 
 blacklist /tmp/.X11-unix
@@ -50,7 +53,9 @@ include disable-xdg.inc
 # include whitelist-usr-share-common.inc
 # include whitelist-var-common.inc
 
-apparmor
+# people use to install servers all over the place!
+# apparmor runs executable only from default system locations
+# apparmor
 caps
 # ipc-namespace
 machine-id
@@ -59,15 +64,16 @@ no3d
 nodvd
 # nogroups
 noinput
-# nonewprivs
+nonewprivs
 # noroot
 nosound
 notv
 nou2f
 novideo
-# protocol unix,inet,inet6,netlink
+protocol unix,inet,inet6,netlink,packet
 seccomp
 # shell none
+tab # allow tab completion
 
 disable-mnt
 private
-- 
cgit v1.2.3-54-g00ecf