From 264f0441fff53a94760c34cb69262721818d0a50 Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sun, 24 Feb 2019 22:22:43 +0000
Subject: Harden file-roller.profile (#2468)

---
 etc/file-roller.profile | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'etc')

diff --git a/etc/file-roller.profile b/etc/file-roller.profile
index e4863bfc0..6ec5e05b1 100644
--- a/etc/file-roller.profile
+++ b/etc/file-roller.profile
@@ -16,8 +16,11 @@ include whitelist-var-common.inc
 
 apparmor
 caps.drop all
+ipc-namespace
+machine-id
 net none
 no3d
+# nodbus makes settings immutable - comment if you need settings support
 nodbus
 nodvd
 nogroups
@@ -37,6 +40,6 @@ private-dev
 # private-etc alternatives,fonts
 # private-tmp
 
-#memory-deny-write-execute  - breaks on Arch
+memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-- 
cgit v1.2.3-70-g09d2