summaryrefslogtreecommitdiff
path: root/paradox-launcher.local
diff options
context:
space:
mode:
Diffstat (limited to 'paradox-launcher.local')
-rw-r--r--paradox-launcher.local9
1 files changed, 5 insertions, 4 deletions
diff --git a/paradox-launcher.local b/paradox-launcher.local
index 2f7caca..6384ee8 100644
--- a/paradox-launcher.local
+++ b/paradox-launcher.local
@@ -19,6 +19,7 @@ whitelist ${HOME}/.paradox-launcher
mkdir ${HOME}/.paradoxinteractive
whitelist ${HOME}/.paradoxinteractive
whitelist /opt/paradox-launcher
+read-only /opt/paradox-launcher
caps.drop all
ipc-namespace
@@ -33,15 +34,15 @@ noroot
notv
novideo
# protocol unix
-protocol unix,inet,inet6
+protocol unix,inet,inet6,netlink
seccomp
shell none
-tracelog
+# tracelog
-memory-deny-write-execute
+# memory-deny-write-execute
disable-mnt
private-dev
-private-etc asound.conf,machine-id,pulse,resolv.conf
+private-etc asound.conf,ca-certificates,machine-id,localtime,pulse,resolv.conf,ssl
private-tmp
# noexec ${HOME}
generated by cgit v1.2.1 (git 2.18.0) at 2024-04-28 11:04:57 +0000