26 lines
402 B
Plaintext
26 lines
402 B
Plaintext
include default.local
|
|
include globals.local
|
|
|
|
include disable-common.inc
|
|
include disable-programs.inc
|
|
|
|
caps.drop all
|
|
netfilter
|
|
noinput
|
|
nonewprivs
|
|
noroot
|
|
notv
|
|
novideo
|
|
protocol unix,inet,inet6
|
|
seccomp
|
|
|
|
## Enable features
|
|
|
|
allow-debuggers
|
|
|
|
# Enable direnv configs
|
|
whitelist ${HOME}/.config/direnv
|
|
read-only ${HOME}/.config/direnv
|
|
whitelist ${HOME}/.local/share/direnv
|
|
read-only ${HOME}/.local/share/direnv
|