Update file.profile

 * fix private-lib, closes #3233
 * make private-etc and private-lib opt-in
   see https://github.com/netblue30/firejail/issues/3233#issuecomment-589871765

disable-devel.inc: remove duplicated line

2 files changed, 2 insertions, 3 deletions

diff --git a/etc/disable-devel.inc b/etc/disable-devel.inc
index 59df9fb0f..e1ba13380 100644
--- a/etc/disable-devel.inc
+++ b/etc/disable-devel.inc
@@ -26,7 +26,6 @@ blacklist ${PATH}/*-gcc*
 blacklist ${PATH}/*-g++*
 blacklist ${PATH}/*-gcc*
 blacklist ${PATH}/*-g++*
-blacklist /usr/include
 # seems to create problems on Gentoo
 #blacklist /usr/lib/gcc
 
diff --git a/etc/file.profile b/etc/file.profile
index 9b21818f8..82b161d48 100644
--- a/etc/file.profile
+++ b/etc/file.profile
@@ -38,8 +38,8 @@ x11 none
 #private-bin bzip2,file,gzip,lrzip,lz4,lzip,xz,zstd
 private-cache
 private-dev
-private-etc alternatives,localtime,magic,magic.mgc
-private-lib file,libarchive.so.*,libfakeroot,libmagic.so.*
+#private-etc alternatives,localtime,magic,magic.mgc
+#private-lib file,libarchive.so.*,libfakeroot,libmagic.so.*,libseccomp.so.*
 
 memory-deny-write-execute
 read-only ${HOME}