mirror of
https://github.com/netblue30/firejail.git
synced 2026-05-21 06:45:29 -06:00
disable-shell.inc (#3411)
* disable-shell.inc * add disable-shell.inc to all profiles with a … … private-bin line without bash/sh except profiles with redirect profiles. * add it to some more profiles * exclude aria2c.profile
This commit is contained in:
rusty-snake
GitHub
parent
52e24dbb3e
commit
2c914c7d25
183 changed files with 197 additions and 2 deletions
13
etc/inc/disable-shell.inc
Normal file
13
etc/inc/disable-shell.inc
Normal file
|
|
@ -0,0 +1,13 @@
|
|||
# This file is overwritten during software install.
|
||||
# Persistent customizations should go in a .local file.
|
||||
include disable-shell.local
|
||||
|
||||
blacklist ${PATH}/bash
|
||||
blacklist ${PATH}/csh
|
||||
blacklist ${PATH}/dash
|
||||
blacklist ${PATH}/fish
|
||||
blacklist ${PATH}/ksh
|
||||
blacklist ${PATH}/sh
|
||||
blacklist ${PATH}/tclsh
|
||||
blacklist ${PATH}/tcsh
|
||||
blacklist ${PATH}/zsh
|
||||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
whitelist /usr/share/abiword-3.0
|
||||
include whitelist-usr-share-common.inc
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkfile ${HOME}/.config/akregatorrc
|
||||
mkdir ${HOME}/.local/share/akregator
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.local/share/Anki2
|
||||
|
|
|
|||
|
|
@ -9,9 +9,10 @@ noblacklist ${HOME}/.anydesk
|
|||
|
||||
include disable-common.inc
|
||||
include disable-devel.inc
|
||||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-interpreters.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.anydesk
|
||||
whitelist ${HOME}/.anydesk
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
apparmor
|
||||
caps.drop all
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/arch-audit
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
# whitelisting in ${HOME} makes settings immutable, see #3112
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist ${PICTURES}
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -13,6 +13,7 @@ include disable-devel.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.config/aweather
|
||||
whitelist ${HOME}/.config/aweather
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
# include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
# include disable-xdg.inc
|
||||
|
||||
include whitelist-runuser-common.inc
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.bitcoin
|
||||
mkdir ${HOME}/.config/Bitcoin
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/Bitwarden
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.parallelrealities/blobwars
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.bzf
|
||||
|
|
|
|||
|
|
@ -17,6 +17,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/cameramonitor
|
||||
|
|
|
|||
|
|
@ -20,6 +20,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
# apparmor
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-devel.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
caps.drop all
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.cache/agenda
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.cache/com.github.johnfactotum.Foliate
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
# This profile could be significantly strengthened by adding the following to cower.local
|
||||
|
|
|
|||
|
|
@ -17,6 +17,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-common.inc
|
||||
|
|
|
|||
|
|
@ -18,6 +18,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/d-feet
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist ${HOME}/.local/share/glib-2.0
|
||||
|
|
|
|||
|
|
@ -13,6 +13,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/devhelp
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.local/share/dino
|
||||
whitelist ${HOME}/.local/share/dino
|
||||
|
|
|
|||
|
|
@ -17,6 +17,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-usr-share-common.inc
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-devel.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/dragonplayer
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/draw.io
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/electron-mail
|
||||
|
|
|
|||
|
|
@ -18,6 +18,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.electrum
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.etr
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/doc
|
||||
|
|
|
|||
|
|
@ -22,6 +22,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.quodlibet
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
# This profile disables network access
|
||||
# In order to enable network access,
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/devedeng
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-runuser-common.inc
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.cache/font-manager
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/galculator
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.cache/gfeeds
|
||||
|
|
|
|||
|
|
@ -17,6 +17,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/ghostwriter
|
||||
|
|
|
|||
|
|
@ -13,6 +13,7 @@ include disable-exec.inc
|
|||
include disable-passwdmgr.inc
|
||||
include disable-interpreters.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-common.inc
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/org.gnome.Characters
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
#mkdir ${HOME}/.local/share/gnome-chess
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/gnome-clocks
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.cache/mesa_shader_cache
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /var/log/journal
|
||||
|
|
|
|||
|
|
@ -24,6 +24,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.cache/champlain
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/cracklib
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.cache/gnome-recipes
|
||||
mkdir ${HOME}/.local/share/gnome-recipes
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-usr-share-common.inc
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /var/log
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/gnome-todo
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-common.inc
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
whitelist /usr/share/gpicview
|
||||
include whitelist-usr-share-common.inc
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.config/Gpredict
|
||||
whitelist ${HOME}/.config/Gpredict
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/gravity-beams-and-evaporating-stars
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-devel.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
caps.drop all
|
||||
nodvd
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-common.inc
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
caps.drop all
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-common.inc
|
||||
|
|
|
|||
|
|
@ -23,6 +23,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/hexchat
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-devel.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
caps.drop all
|
||||
net none
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
caps.drop all
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkfile ${HOME}/hyperrogue.ini
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -13,6 +13,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkfile ${HOME}/.config/kcalcrc
|
||||
mkfile ${HOME}/.kde/share/config/kcalcrc
|
||||
|
|
|
|||
|
|
@ -13,6 +13,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -20,6 +20,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/keepassxc
|
||||
|
|
|
|||
|
|
@ -16,6 +16,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.kde/share/apps/ktorrent
|
||||
mkdir ${HOME}/.kde4/share/apps/ktorrent
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkfile ${HOME}/.config/ktouch2rc
|
||||
|
|
|
|||
|
|
@ -19,6 +19,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -21,6 +21,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.lincity-ng
|
||||
|
|
|
|||
|
|
@ -17,6 +17,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/lugaru
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /var/lib/games
|
||||
|
|
|
|||
|
|
@ -25,6 +25,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/qtchooser
|
||||
|
|
|
|||
|
|
@ -17,6 +17,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/Nextcloud/Notes
|
||||
|
|
|
|||
|
|
@ -18,6 +18,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
caps.drop all
|
||||
|
|
|
|||
|
|
@ -17,6 +17,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.magicor
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/mana
|
||||
|
|
|
|||
|
|
@ -11,6 +11,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -13,6 +13,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
mkdir ${HOME}/.config/mate/mate-dictionary
|
||||
whitelist ${HOME}/.config/mate/mate-dictionary
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-devel.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
caps.drop all
|
||||
netfilter
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-usr-share-common.inc
|
||||
include whitelist-var-common.inc
|
||||
|
|
|
|||
|
|
@ -35,6 +35,7 @@ include disable-interpreters.inc
|
|||
include disable-passwdmgr.inc
|
||||
# Uncomment the next line (or put it into your meld.local) if you don't need to compare files in disable-programs.inc.
|
||||
#include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-runuser-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -18,6 +18,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.config/meteo-qt
|
||||
|
|
|
|||
|
|
@ -12,6 +12,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist /usr/share/mindless
|
||||
|
|
|
|||
|
|
@ -15,6 +15,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.cache/minetest
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
mkdir ${HOME}/.mirrormagic
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -14,6 +14,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
|
||||
include whitelist-var-common.inc
|
||||
|
||||
|
|
|
|||
|
|
@ -20,6 +20,7 @@ include disable-exec.inc
|
|||
include disable-interpreters.inc
|
||||
include disable-passwdmgr.inc
|
||||
include disable-programs.inc
|
||||
include disable-shell.inc
|
||||
include disable-xdg.inc
|
||||
|
||||
whitelist ${MUSIC}
|
||||
|
|
|
|||
Some files were not shown because too many files have changed in this diff Show more
Loading…
Add table
Add a link
Reference in a new issue