update doas.conf

1 files changed, 14 insertions, 10 deletions

diff --git a/doas.conf b/doas.conf
index ab9b891..c0328d2 100644
--- a/doas.conf
+++ b/doas.conf
@@ -1,12 +1,16 @@
-permit persist setenv { XAUTHORITY LANG LC_ALL } zachir
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd make args install
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd iptables
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd ip6tables
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd mount
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd mount.exfat
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd umount
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd modprobe
-permit nopass setenv { XAUTHORITY LANG LC_ALL } zachir cmd zzz
-permit nopass keepenv zachir as zachir
+permit persist setenv { XAUTHORITY LANG LC_ALL } :wheel
+permit nopass :wheel cmd make args install
+permit nopass :wheel cmd iptables args -S
+permit nopass :wheel cmd ip6tables args -S
+permit nopass :wheel cmd nft args list ruleset
+permit nopass :wheel cmd mount
+permit nopass :wheel cmd mount.exfat
+permit nopass :wheel cmd umount
+permit nopass :wheel cmd modprobe
+permit nopass :wheel cmd zzz
+permit nopass :wheel cmd pacman
+permit nopass :wheel cmd cryptsetup
+permit setenv { EDITOR } :wheel cmd visudo args
 
+permit nopass keepenv zachir as zachir
 permit nopass keepenv root