Skip to content

Commit

Permalink
cover more folders in /usr/local
Browse files Browse the repository at this point in the history
  • Loading branch information
Patrick Schleizer committed Dec 6, 2020
1 parent 5bd267d commit b2b614e
Showing 1 changed file with 12 additions and 5 deletions.
17 changes: 12 additions & 5 deletions etc/permission-hardening.d/30_default.conf
View file
Expand Up @@ -81,27 +81,34 @@
## Remove all SUID/SGID binaries/libraries.

/bin/ nosuid
/usr/local/bin/ nosuid

/usr/bin/ nosuid
/usr/local/bin/ nosuid
/usr/local/usr/bin/ nosuid

/sbin/ nosuid
/usr/local/sbin/ nosuid

/usr/sbin/ nosuid
/usr/local/sbin/ nosuid
/usr/local/usr/sbin/ nosuid

/lib/ nosuid
/usr/local/lib/ nosuid

/lib32/ nosuid
/usr/local/lib32/ nosuid

/lib64/ nosuid
/usr/local/lib64/ nosuid

/usr/lib/ nosuid
/usr/local/lib/ nosuid
/usr/local/usr/lib/ nosuid

/usr/lib32/ nosuid
/usr/local/lib32/ nosuid
/usr/local/usr/lib32/ nosuid

/usr/lib64/ nosuid
/usr/local/lib64/ nosuid
/usr/local/usr/lib64/ nosuid

## https://forums.whonix.org/t/suid-disabler-and-permission-hardener/7706/68
/opt/ nosuid
Expand Down

0 comments on commit b2b614e

Please sign in to comment.