# History files in $HOMEblacklist-nolog ${HOME}/.historyblacklist-nolog ${HO

1. # History files in $HOME
2. blacklist-nolog ${HOME}/.history
3. blacklist-nolog ${HOME}/.*_history
4. blacklist ${HOME}/.local/share/systemd
5. blacklist-nolog ${HOME}/.adobe
6. blacklist-nolog ${HOME}/.macromedia
7. read-only ${HOME}/.local/share/applications
8.  
9. # X11 session autostart
10. blacklist ${HOME}/.xinitrc
11. blacklist ${HOME}/.xprofile
12. blacklist ${HOME}/.config/autostart
13. blacklist /etc/xdg/autostart
14. blacklist ${HOME}/.kde4/Autostart
15. blacklist ${HOME}/.kde4/share/autostart
16. blacklist ${HOME}/.kde/Autostart
17. blacklist ${HOME}/.kde/share/autostart
18. blacklist ${HOME}/.config/plasma-workspace/shutdown
19. blacklist ${HOME}/.config/plasma-workspace/env
20. blacklist ${HOME}/.config/lxsession/LXDE/autostart
21. blacklist ${HOME}/.fluxbox/startup
22. blacklist ${HOME}/.config/openbox/autostart
23. blacklist ${HOME}/.config/openbox/environment
24. blacklist ${HOME}/.gnomerc
25. blacklist /etc/X11/Xsession.d/
26.  
27. # VirtualBox
28. blacklist ${HOME}/.VirtualBox
29. blacklist ${HOME}/VirtualBox VMs
30. blacklist ${HOME}/.config/VirtualBox
31.  
32. # TBB MOYA BLYAD NE ZABUD SUKA
33. # blacklist ${HOME}/Tor
34.  
35. # VeraCrypt
36. blacklist ${PATH}/veracrypt
37. blacklist ${PATH}/veracrypt-uninstall.sh
38. blacklist /usr/share/veracrypt
39. blacklist /usr/share/applications/veracrypt.*
40. blacklist /usr/share/pixmaps/veracrypt.*
41. blacklist ${HOME}/.VeraCrypt
42.  
43. # var
44. blacklist /var/spool/cron
45. blacklist /var/spool/anacron
46. blacklist /var/run/acpid.socket
47. blacklist /var/run/minissdpd.sock
48. blacklist /var/run/rpcbind.sock
49. blacklist /var/run/mysqld/mysqld.sock
50. blacklist /var/run/mysql/mysqld.sock
51. blacklist /var/lib/mysqld/mysql.sock
52. blacklist /var/lib/mysql/mysql.sock
53. blacklist /var/run/docker.sock
54.  
55. # etc
56. blacklist /etc/cron.*
57. blacklist /etc/profile.d
58. blacklist /etc/rc.local
59. blacklist /etc/anacrontab
60.  
61. # General startup files
62. read-only ${HOME}/.xinitrc
63. read-only ${HOME}/.xserverrc
64. read-only ${HOME}/.profile
65.  
66. # Shell startup files
67. read-only ${HOME}/.antigen
68. read-only ${HOME}/.bash_login
69. read-only ${HOME}/.bashrc
70. read-only ${HOME}/.bash_profile
71. read-only ${HOME}/.bash_logout
72. read-only ${HOME}/.zsh.d
73. read-only ${HOME}/.zshenv
74. read-only ${HOME}/.zshrc
75. read-only ${HOME}/.zshrc.local
76. read-only ${HOME}/.zlogin
77. read-only ${HOME}/.zprofile
78. read-only ${HOME}/.zlogout
79. read-only ${HOME}/.zsh_files
80. read-only ${HOME}/.tcshrc
81. read-only ${HOME}/.cshrc
82. read-only ${HOME}/.csh_files
83. read-only ${HOME}/.profile
84.  
85. # Initialization files that allow arbitrary command execution
86. read-only ${HOME}/.caffrc
87. read-only ${HOME}/.dotfiles
88. read-only ${HOME}/dotfiles
89. read-only ${HOME}/.mailcap
90. read-only ${HOME}/.exrc
91. read-only ${HOME}/_exrc
92. read-only ${HOME}/.vimrc
93. read-only ${HOME}/_vimrc
94. read-only ${HOME}/.gvimrc
95. read-only ${HOME}/_gvimrc
96. read-only ${HOME}/.vim
97. read-only ${HOME}/.emacs
98. read-only ${HOME}/.emacs.d
99. read-only ${HOME}/.nano
100. read-only ${HOME}/.tmux.conf
101. read-only ${HOME}/.iscreenrc
102. read-only ${HOME}/.muttrc
103. read-only ${HOME}/.mutt/muttrc
104. read-only ${HOME}/.msmtprc
105. read-only ${HOME}/.reportbugrc
106. read-only ${HOME}/.xmonad
107. read-only ${HOME}/.xscreensaver
108.  
109. # The user ~/bin directory can override commands such as ls
110. read-only ${HOME}/bin
111.  
112. # top secret
113. blacklist ${HOME}/.ssh
114. blacklist ${HOME}/.cert
115. blacklist ${HOME}/.gnome2/keyrings
116. blacklist ${HOME}/.kde4/share/apps/kwallet
117. blacklist ${HOME}/.kde/share/apps/kwallet
118. blacklist ${HOME}/.local/share/kwalletd
119. blacklist ${HOME}/.config/keybase
120. blacklist ${HOME}/.netrc
121. blacklist ${HOME}/.gnupg
122. blacklist ${HOME}/.caff
123. blacklist ${HOME}/.smbcredentials
124. blacklist ${HOME}/*.kdbx
125. blacklist ${HOME}/*.kdb
126. blacklist ${HOME}/*.key
127. blacklist ${HOME}/.muttrc
128. blacklist ${HOME}/.mutt/muttrc
129. blacklist ${HOME}/.msmtprc
130. blacklist /etc/shadow
131. blacklist /etc/gshadow
132. blacklist /etc/passwd-
133. blacklist /etc/group-
134. blacklist /etc/shadow-
135. blacklist /etc/gshadow-
136. blacklist /etc/passwd+
137. blacklist /etc/group+
138. blacklist /etc/shadow+
139. blacklist /etc/gshadow+
140. blacklist /etc/ssh
141. blacklist /var/backup
142.  
143. # system management
144. blacklist ${PATH}/umount
145. blacklist ${PATH}/mount
146. blacklist ${PATH}/fusermount
147. blacklist ${PATH}/su
148. blacklist ${PATH}/sudo
149. blacklist ${PATH}/xinput
150. blacklist ${PATH}/evtest
151. blacklist ${PATH}/xev
152. blacklist ${PATH}/strace
153. blacklist ${PATH}/nc
154. blacklist ${PATH}/ncat
155.  
156. # system directories
157. blacklist /sbin
158. blacklist /usr/sbin
159. blacklist /usr/local/sbin
160.  
161. # prevent lxterminal connecting to an existing lxterminal session
162. blacklist /tmp/.lxterminal-socket*
163.  
164. # disable terminals running as server resulting in sandbox escape
165. blacklist ${PATH}/gnome-terminal
166. blacklist ${PATH}/gnome-terminal.wrapper
167. blacklist ${PATH}/xfce4-terminal
168. blacklist ${PATH}/xfce4-terminal.wrapper
169. blacklist ${PATH}/mate-terminal
170. blacklist ${PATH}/mate-terminal.wrapper
171. blacklist ${PATH}/lilyterm
172. blacklist ${PATH}/pantheon-terminal
173. blacklist ${PATH}/roxterm
174. blacklist ${PATH}/roxterm-config
175. blacklist ${PATH}/terminix
176. blacklist ${PATH}/urxvtc
177. blacklist ${PATH}/urxvtcd