Kelvin M. Klann e46d9adcf1 profiles: fix allowing netcat (#7059) ... disable-common.inc has these lines: blacklist ${PATH}/nc blacklist ${PATH}/nc.openbsd blacklist ${PATH}/nc.traditional blacklist ${PATH}/ncat With openbsd-netcat on Artix, `/usr/bin/nc.openbsd` is symlinked to `/usr/bin/nc`: $ pacman -Fl gnu-netcat openbsd-netcat | grep bin/nc gnu-netcat usr/bin/nc openbsd-netcat usr/bin/nc openbsd-netcat usr/bin/nc.openbsd $ realpath /usr/bin/nc.openbsd /usr/bin/nc So `noblacklist ${PATH}/nc` is not enough, as `blacklist ${PATH}/nc.openbsd` will follow the symlink to `/usr/bin/nc` and still blacklist it. To prevent `/usr/bin/nc` from being blacklisted, `noblacklist ${PATH}/nc.openbsd` is also needed in this case. To ensure that netcat is allowed, always `noblacklist` all netcat paths. Fixes #6911.		2026-02-11 19:14:21 +00:00
..
apparmor	adding apparmor profiles for --nettrace option	2026-02-11 09:17:22 -05:00
inc	disable by default some of the systemd tools, more cleanup, and more testing	2026-02-04 07:34:07 -05:00
net	added link-local addresses to 'nolocal' firewall configs (#7054)	2026-02-06 20:40:02 -05:00
profile-a-l	profiles: add keep-hostname to profile.template	2026-02-11 16:10:47 -03:00
profile-m-z	profiles: fix allowing netcat (#7059)	2026-02-11 19:14:21 +00:00
templates	profiles: add keep-hostname to profile.template	2026-02-11 16:10:47 -03:00
firejail.config	build: remove remnants of overlayfs/--overlay	2025-12-19 16:35:02 -03:00
login.users