diff options
author | netblue30 <netblue30@yahoo.com> | 2016-10-11 09:11:13 -0400 |
---|---|---|
committer | GitHub <noreply@github.com> | 2016-10-11 09:11:13 -0400 |
commit | a235eef16f7555822a41d047fd21b94b41a8978f (patch) | |
tree | fa21d8bbcb6d6ebc7c61119e3428b0bd1795dde7 | |
parent | vlc profile fix (diff) | |
parent | Delete test (diff) | |
download | firejail-a235eef16f7555822a41d047fd21b94b41a8978f.tar.gz firejail-a235eef16f7555822a41d047fd21b94b41a8978f.tar.zst firejail-a235eef16f7555822a41d047fd21b94b41a8978f.zip |
Merge pull request #854 from vismir2/master
new profiles
-rw-r--r-- | etc/claws-mail.profile | 25 | ||||
-rw-r--r-- | etc/emacs.profile | 14 | ||||
-rw-r--r-- | etc/git.profile | 27 | ||||
-rw-r--r-- | etc/mutt.profile | 38 | ||||
-rw-r--r-- | etc/vim.profile | 14 |
5 files changed, 118 insertions, 0 deletions
diff --git a/etc/claws-mail.profile b/etc/claws-mail.profile new file mode 100644 index 000000000..6dbf893ab --- /dev/null +++ b/etc/claws-mail.profile | |||
@@ -0,0 +1,25 @@ | |||
1 | # claws-mail profile | ||
2 | |||
3 | noblacklist ~/.claws-mail | ||
4 | noblacklist ~/.signature | ||
5 | noblacklist ~/.ssh | ||
6 | noblacklist ~/.gnupg | ||
7 | |||
8 | include /etc/firejail/disable-common.inc | ||
9 | include /etc/firejail/disable-programs.inc | ||
10 | include /etc/firejail/disable-devel.inc | ||
11 | include /etc/firejail/disable-passwdmgr.inc | ||
12 | |||
13 | caps.drop all | ||
14 | netfilter | ||
15 | nonewprivs | ||
16 | noroot | ||
17 | nogroups | ||
18 | nosound | ||
19 | protocol unix,inet,inet6 | ||
20 | seccomp | ||
21 | shell none | ||
22 | |||
23 | private-dev | ||
24 | private-tmp | ||
25 | |||
diff --git a/etc/emacs.profile b/etc/emacs.profile new file mode 100644 index 000000000..2cf614ca7 --- /dev/null +++ b/etc/emacs.profile | |||
@@ -0,0 +1,14 @@ | |||
1 | # emacs profile | ||
2 | |||
3 | include /etc/firejail/disable-common.inc | ||
4 | include /etc/firejail/disable-programs.inc | ||
5 | include /etc/firejail/disable-passwdmgr.inc | ||
6 | |||
7 | |||
8 | caps.drop all | ||
9 | netfilter | ||
10 | nonewprivs | ||
11 | noroot | ||
12 | nogroups | ||
13 | protocol unix,inet,inet6 | ||
14 | seccomp | ||
diff --git a/etc/git.profile b/etc/git.profile new file mode 100644 index 000000000..2fb55377d --- /dev/null +++ b/etc/git.profile | |||
@@ -0,0 +1,27 @@ | |||
1 | # git profile | ||
2 | |||
3 | noblacklist ~/.gitconfig | ||
4 | noblacklist ~/.ssh | ||
5 | noblacklist ~/.gnupg | ||
6 | noblacklist ~/.emacs | ||
7 | noblacklist ~/.emacs.d | ||
8 | noblacklist ~/.viminfo | ||
9 | noblacklist ~/.vim | ||
10 | |||
11 | include /etc/firejail/disable-common.inc | ||
12 | include /etc/firejail/disable-programs.inc | ||
13 | include /etc/firejail/disable-passwdmgr.inc | ||
14 | |||
15 | quiet | ||
16 | |||
17 | caps.drop all | ||
18 | netfilter | ||
19 | nonewprivs | ||
20 | noroot | ||
21 | nogroups | ||
22 | nosound | ||
23 | protocol unix,inet,inet6 | ||
24 | seccomp | ||
25 | shell none | ||
26 | |||
27 | private-dev | ||
diff --git a/etc/mutt.profile b/etc/mutt.profile new file mode 100644 index 000000000..4c9a30dac --- /dev/null +++ b/etc/mutt.profile | |||
@@ -0,0 +1,38 @@ | |||
1 | # mutt email client profile | ||
2 | |||
3 | noblacklist ~/.muttrc | ||
4 | noblacklist ~/.mutt | ||
5 | noblacklist ~/.mailcap | ||
6 | noblacklist ~/.gnupg | ||
7 | noblacklist ~/.mail | ||
8 | noblacklist ~/.Mail | ||
9 | noblacklist ~/mail | ||
10 | noblacklist ~/Mail | ||
11 | noblacklist ~/sent | ||
12 | noblacklist ~/postponed | ||
13 | noblacklist ~/.cache/mutt | ||
14 | noblacklist ~/.w3m | ||
15 | noblacklist ~/.elinks | ||
16 | noblacklist ~/.vim | ||
17 | noblacklist ~/.viminfo | ||
18 | noblacklist ~/.emacs | ||
19 | noblacklist ~/.emacs.d | ||
20 | noblacklist ~/.signature | ||
21 | noblacklist ~/.bogofilter | ||
22 | |||
23 | include /etc/firejail/disable-common.inc | ||
24 | include /etc/firejail/disable-programs.inc | ||
25 | include /etc/firejail/disable-passwdmgr.inc | ||
26 | include /etc/firejail/disable-devel.inc | ||
27 | |||
28 | caps.drop all | ||
29 | netfilter | ||
30 | nogroups | ||
31 | nonewprivs | ||
32 | noroot | ||
33 | nosound | ||
34 | protocol unix,inet,inet6 | ||
35 | seccomp | ||
36 | shell none | ||
37 | |||
38 | private-dev | ||
diff --git a/etc/vim.profile b/etc/vim.profile new file mode 100644 index 000000000..b16939475 --- /dev/null +++ b/etc/vim.profile | |||
@@ -0,0 +1,14 @@ | |||
1 | # vim profile | ||
2 | |||
3 | include /etc/firejail/disable-common.inc | ||
4 | include /etc/firejail/disable-programs.inc | ||
5 | include /etc/firejail/disable-passwdmgr.inc | ||
6 | |||
7 | |||
8 | caps.drop all | ||
9 | netfilter | ||
10 | nonewprivs | ||
11 | noroot | ||
12 | nogroups | ||
13 | protocol unix,inet,inet6 | ||
14 | seccomp | ||