diff options
author | Jean Lucas <jean@4ray.co> | 2018-04-27 14:41:43 -0400 |
---|---|---|
committer | Jean Lucas <jean@4ray.co> | 2018-04-27 14:45:07 -0400 |
commit | f593164cdd79da7e21301b316e5dfe171c3bdbf8 (patch) | |
tree | 86bff6f40e9d4426152fa967b10865604d833e38 | |
parent | baloo tweak (diff) | |
download | firejail-f593164cdd79da7e21301b316e5dfe171c3bdbf8.tar.gz firejail-f593164cdd79da7e21301b316e5dfe171c3bdbf8.tar.zst firejail-f593164cdd79da7e21301b316e5dfe171c3bdbf8.zip |
Update Gajim profile
- Version 1 ported to Python 3, so remove 2.7-related settings
- Plugins get installed in ~/.local/share/gajim/plugins
- Enable private-{etc,tmp}
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/gajim.profile | 14 |
2 files changed, 5 insertions, 10 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index c12d841d6..87f151a9a 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -348,7 +348,6 @@ blacklist ${HOME}/.kodi | |||
348 | blacklist ${HOME}/.linphone-history.db | 348 | blacklist ${HOME}/.linphone-history.db |
349 | blacklist ${HOME}/.linphonerc | 349 | blacklist ${HOME}/.linphonerc |
350 | blacklist ${HOME}/.lmmsrc.xml | 350 | blacklist ${HOME}/.lmmsrc.xml |
351 | blacklist ${HOME}/.local/lib/python2.7/site-packages | ||
352 | blacklist ${HOME}/.local/share/0ad | 351 | blacklist ${HOME}/.local/share/0ad |
353 | blacklist ${HOME}/.local/share/3909/PapersPlease | 352 | blacklist ${HOME}/.local/share/3909/PapersPlease |
354 | blacklist ${HOME}/.local/share/Empathy | 353 | blacklist ${HOME}/.local/share/Empathy |
diff --git a/etc/gajim.profile b/etc/gajim.profile index 02c818443..437ffe3e7 100644 --- a/etc/gajim.profile +++ b/etc/gajim.profile | |||
@@ -10,8 +10,8 @@ noblacklist ${HOME}/.config/gajim | |||
10 | noblacklist ${HOME}/.local/share/gajim | 10 | noblacklist ${HOME}/.local/share/gajim |
11 | 11 | ||
12 | # Allow python2.7 (blacklisted by disable-interpreters.inc) | 12 | # Allow python2.7 (blacklisted by disable-interpreters.inc) |
13 | noblacklist ${PATH}/python2* | 13 | noblacklist ${PATH}/python3* |
14 | noblacklist /usr/lib/python2* | 14 | noblacklist /usr/lib/python3* |
15 | 15 | ||
16 | include /etc/firejail/disable-common.inc | 16 | include /etc/firejail/disable-common.inc |
17 | include /etc/firejail/disable-devel.inc | 17 | include /etc/firejail/disable-devel.inc |
@@ -21,12 +21,10 @@ include /etc/firejail/disable-programs.inc | |||
21 | 21 | ||
22 | mkdir ${HOME}/.cache/gajim | 22 | mkdir ${HOME}/.cache/gajim |
23 | mkdir ${HOME}/.config/gajim | 23 | mkdir ${HOME}/.config/gajim |
24 | mkdir ${HOME}/.local/lib/python2.7/site-packages/ | ||
25 | mkdir ${HOME}/.local/share/gajim | 24 | mkdir ${HOME}/.local/share/gajim |
26 | mkdir ${HOME}/Downloads | 25 | mkdir ${HOME}/Downloads |
27 | whitelist ${HOME}/.cache/gajim | 26 | whitelist ${HOME}/.cache/gajim |
28 | whitelist ${HOME}/.config/gajim | 27 | whitelist ${HOME}/.config/gajim |
29 | whitelist ${HOME}/.local/lib/python2.7/site-packages/ | ||
30 | whitelist ${HOME}/.local/share/gajim | 28 | whitelist ${HOME}/.local/share/gajim |
31 | whitelist ${HOME}/Downloads | 29 | whitelist ${HOME}/Downloads |
32 | include /etc/firejail/whitelist-common.inc | 30 | include /etc/firejail/whitelist-common.inc |
@@ -43,9 +41,7 @@ seccomp | |||
43 | shell none | 41 | shell none |
44 | 42 | ||
45 | disable-mnt | 43 | disable-mnt |
46 | private-bin python2.7,gajim | 44 | private-bin python,gajim |
47 | private-dev | 45 | private-dev |
48 | # private-etc fonts | 46 | private-etc fonts |
49 | # private-tmp | 47 | private-tmp |
50 | # Allow the local python 2.7 site packages, in case any plugins are using these | ||
51 | read-only ${HOME}/.local/lib/python2.7/site-packages/ | ||