From 18a110e584094ae3e394762875169b26a5d69995 Mon Sep 17 00:00:00 2001 From: glitsj16 Date: Wed, 1 Mar 2023 05:02:27 +0000 Subject: [PATCH] profiles: drop hostname option Now that we have randomized UTS namespaces support[1] by default for every sandbox, there's no longer a need to set hostname to a fixed value. This commit removes such fixed hostname entries from all profiles that have it. [1] https://github.com/netblue30/firejail/discussions/5597#discussioncomment-4996357 --- etc/profile-a-l/agetpkg.profile | 1 - etc/profile-a-l/archiver-common.profile | 1 - etc/profile-a-l/file.profile | 1 - etc/profile-a-l/galculator.profile | 1 - etc/profile-a-l/geekbench.profile | 1 - etc/profile-m-z/mdr.profile | 1 - etc/profile-m-z/qpdf.profile | 1 - etc/profile-m-z/tesseract.profile | 1 - etc/profile-m-z/unf.profile | 1 - etc/profile-m-z/uudeview.profile | 1 - etc/profile-m-z/whois.profile | 1 - 11 files changed, 11 deletions(-) diff --git a/etc/profile-a-l/agetpkg.profile b/etc/profile-a-l/agetpkg.profile index 7a36302f14d..9ebbf1cb053 100644 --- a/etc/profile-a-l/agetpkg.profile +++ b/etc/profile-a-l/agetpkg.profile @@ -28,7 +28,6 @@ include whitelist-usr-share-common.inc include whitelist-var-common.inc caps.drop all -hostname agetpkg ipc-namespace machine-id netfilter diff --git a/etc/profile-a-l/archiver-common.profile b/etc/profile-a-l/archiver-common.profile index ef875c5b7e3..487e0c5f89c 100644 --- a/etc/profile-a-l/archiver-common.profile +++ b/etc/profile-a-l/archiver-common.profile @@ -23,7 +23,6 @@ include disable-shell.inc apparmor caps.drop all -hostname archiver ipc-namespace machine-id net none diff --git a/etc/profile-a-l/file.profile b/etc/profile-a-l/file.profile index a5fd05bc765..78f1327c586 100644 --- a/etc/profile-a-l/file.profile +++ b/etc/profile-a-l/file.profile @@ -15,7 +15,6 @@ include disable-programs.inc apparmor caps.drop all -hostname file ipc-namespace machine-id net none diff --git a/etc/profile-a-l/galculator.profile b/etc/profile-a-l/galculator.profile index 96ded592d5a..44d62cc8657 100644 --- a/etc/profile-a-l/galculator.profile +++ b/etc/profile-a-l/galculator.profile @@ -23,7 +23,6 @@ include whitelist-var-common.inc apparmor caps.drop all -#hostname galculator - breaks Arch Linux #ipc-namespace net none nodvd diff --git a/etc/profile-a-l/geekbench.profile b/etc/profile-a-l/geekbench.profile index 3a929774a5a..e8d4c013f66 100644 --- a/etc/profile-a-l/geekbench.profile +++ b/etc/profile-a-l/geekbench.profile @@ -25,7 +25,6 @@ include whitelist-var-common.inc apparmor caps.drop all -hostname geekbench ipc-namespace machine-id netfilter diff --git a/etc/profile-m-z/mdr.profile b/etc/profile-m-z/mdr.profile index d3b3c6d487b..7b83d61e1f2 100644 --- a/etc/profile-m-z/mdr.profile +++ b/etc/profile-m-z/mdr.profile @@ -21,7 +21,6 @@ include whitelist-var-common.inc apparmor caps.drop all -hostname mdr ipc-namespace machine-id net none diff --git a/etc/profile-m-z/qpdf.profile b/etc/profile-m-z/qpdf.profile index 0c1e09e92c2..b307efacca8 100644 --- a/etc/profile-m-z/qpdf.profile +++ b/etc/profile-m-z/qpdf.profile @@ -31,7 +31,6 @@ include whitelist-var-common.inc apparmor caps.drop all -hostname qpdf ipc-namespace machine-id net none diff --git a/etc/profile-m-z/tesseract.profile b/etc/profile-m-z/tesseract.profile index 54568b7d3e0..5babfb8d226 100644 --- a/etc/profile-m-z/tesseract.profile +++ b/etc/profile-m-z/tesseract.profile @@ -31,7 +31,6 @@ include whitelist-var-common.inc apparmor caps.drop all -hostname tesseract ipc-namespace machine-id net none diff --git a/etc/profile-m-z/unf.profile b/etc/profile-m-z/unf.profile index aac99aed56a..cdfd72a5b2e 100644 --- a/etc/profile-m-z/unf.profile +++ b/etc/profile-m-z/unf.profile @@ -24,7 +24,6 @@ include whitelist-var-common.inc apparmor caps.drop all -hostname unf ipc-namespace machine-id net none diff --git a/etc/profile-m-z/uudeview.profile b/etc/profile-m-z/uudeview.profile index a6d2a65e9a4..9a991566980 100644 --- a/etc/profile-m-z/uudeview.profile +++ b/etc/profile-m-z/uudeview.profile @@ -19,7 +19,6 @@ include disable-shell.inc include whitelist-usr-share-common.inc caps.drop all -hostname uudeview ipc-namespace machine-id net none diff --git a/etc/profile-m-z/whois.profile b/etc/profile-m-z/whois.profile index 8958564ef2a..8265e1ff805 100644 --- a/etc/profile-m-z/whois.profile +++ b/etc/profile-m-z/whois.profile @@ -22,7 +22,6 @@ include whitelist-var-common.inc apparmor caps.drop all -hostname whois ipc-namespace machine-id netfilter