diff options
author | 2016-01-20 09:55:15 -0500 | |
---|---|---|
committer | 2016-01-20 09:55:15 -0500 | |
commit | bc972a4241d3435cc43431ec6ab5c93173c73c65 (patch) | |
tree | 25681a1cd332a641b8e5efb0595f219c8e8c39ae | |
parent | debug whitelist code (diff) | |
parent | Added Seamonkey-bin profile (diff) | |
download | firejail-bc972a4241d3435cc43431ec6ab5c93173c73c65.tar.gz firejail-bc972a4241d3435cc43431ec6ab5c93173c73c65.tar.zst firejail-bc972a4241d3435cc43431ec6ab5c93173c73c65.zip |
Merge pull request #236 from mahdi1234/master
Adding Seamonkey profiles
-rw-r--r-- | etc/seamonkey-bin.profile | 30 | ||||
-rw-r--r-- | etc/seamonkey.profile | 30 | ||||
-rw-r--r-- | seamonkey.profile | 30 |
3 files changed, 90 insertions, 0 deletions
diff --git a/etc/seamonkey-bin.profile b/etc/seamonkey-bin.profile new file mode 100644 index 000000000..55b64bdae --- /dev/null +++ b/etc/seamonkey-bin.profile | |||
@@ -0,0 +1,30 @@ | |||
1 | # Firejail profile for Seamoneky based off Mozilla Firefox | ||
2 | noblacklist ${HOME}/.mozilla | ||
3 | include /etc/firejail/disable-mgmt.inc | ||
4 | include /etc/firejail/disable-secret.inc | ||
5 | include /etc/firejail/disable-common.inc | ||
6 | include /etc/firejail/disable-devel.inc | ||
7 | caps.drop all | ||
8 | seccomp | ||
9 | protocol unix,inet,inet6,netlink | ||
10 | netfilter | ||
11 | tracelog | ||
12 | noroot | ||
13 | whitelist ${DOWNLOADS} | ||
14 | whitelist ~/.mozilla/seamonkey | ||
15 | whitelist ~/.cache/mozilla/seamonkey | ||
16 | whitelist ~/dwhelper | ||
17 | whitelist ~/.zotero | ||
18 | whitelist ~/.lastpass | ||
19 | whitelist ~/.vimperatorrc | ||
20 | whitelist ~/.vimperator | ||
21 | whitelist ~/.pentadactylrc | ||
22 | whitelist ~/.pentadactyl | ||
23 | whitelist ~/.keysnail.js | ||
24 | whitelist ~/.config/gnome-mplayer | ||
25 | whitelist ~/.cache/gnome-mplayer/plugin | ||
26 | include /etc/firejail/whitelist-common.inc | ||
27 | |||
28 | # experimental features | ||
29 | #private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse | ||
30 | |||
diff --git a/etc/seamonkey.profile b/etc/seamonkey.profile new file mode 100644 index 000000000..55b64bdae --- /dev/null +++ b/etc/seamonkey.profile | |||
@@ -0,0 +1,30 @@ | |||
1 | # Firejail profile for Seamoneky based off Mozilla Firefox | ||
2 | noblacklist ${HOME}/.mozilla | ||
3 | include /etc/firejail/disable-mgmt.inc | ||
4 | include /etc/firejail/disable-secret.inc | ||
5 | include /etc/firejail/disable-common.inc | ||
6 | include /etc/firejail/disable-devel.inc | ||
7 | caps.drop all | ||
8 | seccomp | ||
9 | protocol unix,inet,inet6,netlink | ||
10 | netfilter | ||
11 | tracelog | ||
12 | noroot | ||
13 | whitelist ${DOWNLOADS} | ||
14 | whitelist ~/.mozilla/seamonkey | ||
15 | whitelist ~/.cache/mozilla/seamonkey | ||
16 | whitelist ~/dwhelper | ||
17 | whitelist ~/.zotero | ||
18 | whitelist ~/.lastpass | ||
19 | whitelist ~/.vimperatorrc | ||
20 | whitelist ~/.vimperator | ||
21 | whitelist ~/.pentadactylrc | ||
22 | whitelist ~/.pentadactyl | ||
23 | whitelist ~/.keysnail.js | ||
24 | whitelist ~/.config/gnome-mplayer | ||
25 | whitelist ~/.cache/gnome-mplayer/plugin | ||
26 | include /etc/firejail/whitelist-common.inc | ||
27 | |||
28 | # experimental features | ||
29 | #private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse | ||
30 | |||
diff --git a/seamonkey.profile b/seamonkey.profile new file mode 100644 index 000000000..d21efc7f5 --- /dev/null +++ b/seamonkey.profile | |||
@@ -0,0 +1,30 @@ | |||
1 | # Firejail profile for Mozilla Firefox (Iceweasel in Debian) | ||
2 | noblacklist ${HOME}/.mozilla | ||
3 | include /etc/firejail/disable-mgmt.inc | ||
4 | include /etc/firejail/disable-secret.inc | ||
5 | include /etc/firejail/disable-common.inc | ||
6 | include /etc/firejail/disable-devel.inc | ||
7 | caps.drop all | ||
8 | seccomp | ||
9 | protocol unix,inet,inet6,netlink | ||
10 | netfilter | ||
11 | tracelog | ||
12 | noroot | ||
13 | whitelist ${DOWNLOADS} | ||
14 | whitelist ~/.mozilla/seamonkey | ||
15 | whitelist ~/.cache/mozilla/seamonkey | ||
16 | whitelist ~/dwhelper | ||
17 | whitelist ~/.zotero | ||
18 | whitelist ~/.lastpass | ||
19 | whitelist ~/.vimperatorrc | ||
20 | whitelist ~/.vimperator | ||
21 | whitelist ~/.pentadactylrc | ||
22 | whitelist ~/.pentadactyl | ||
23 | whitelist ~/.keysnail.js | ||
24 | whitelist ~/.config/gnome-mplayer | ||
25 | whitelist ~/.cache/gnome-mplayer/plugin | ||
26 | include /etc/firejail/whitelist-common.inc | ||
27 | |||
28 | # experimental features | ||
29 | #private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse | ||
30 | |||