diff options
author | netblue30 <netblue30@yahoo.com> | 2016-03-23 08:11:20 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-03-23 08:11:20 -0400 |
commit | 58f54173a8ad0a256913181c9c69fbb2aa1b5e43 (patch) | |
tree | 5f8810b3633621d86b2cf3e83c57ed19409bdfd7 | |
parent | --private-etc fix (diff) | |
parent | Add qTox profile (diff) | |
download | firejail-58f54173a8ad0a256913181c9c69fbb2aa1b5e43.tar.gz firejail-58f54173a8ad0a256913181c9c69fbb2aa1b5e43.tar.zst firejail-58f54173a8ad0a256913181c9c69fbb2aa1b5e43.zip |
Merge pull request #378 from jrabe/master
Add qTox profile
-rw-r--r-- | Makefile.in | 1 | ||||
-rw-r--r-- | README | 1 | ||||
-rw-r--r-- | README.md | 2 | ||||
-rw-r--r-- | etc/qtox.profile | 15 | ||||
-rw-r--r-- | platform/debian/conffiles | 1 |
5 files changed, 19 insertions, 1 deletions
diff --git a/Makefile.in b/Makefile.in index 29d8004f3..90b238752 100644 --- a/Makefile.in +++ b/Makefile.in | |||
@@ -78,6 +78,7 @@ realinstall: | |||
78 | install -c -m 0644 .etc/audacious.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 78 | install -c -m 0644 .etc/audacious.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
79 | install -c -m 0644 .etc/clementine.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 79 | install -c -m 0644 .etc/clementine.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
80 | install -c -m 0644 .etc/epiphany.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 80 | install -c -m 0644 .etc/epiphany.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
81 | install -c -m 0644 .etc/qtox.profile $(DESTDIR)/$(sysconfdir)/firejail/. | ||
81 | install -c -m 0644 .etc/polari.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 82 | install -c -m 0644 .etc/polari.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
82 | install -c -m 0644 .etc/gnome-mplayer.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 83 | install -c -m 0644 .etc/gnome-mplayer.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
83 | install -c -m 0644 .etc/rhythmbox.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 84 | install -c -m 0644 .etc/rhythmbox.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
@@ -41,6 +41,7 @@ jrabe (https://github.com/jrabe) | |||
41 | - disallow access to kdbx files | 41 | - disallow access to kdbx files |
42 | - Epiphany profile | 42 | - Epiphany profile |
43 | - Polari profile | 43 | - Polari profile |
44 | - qTox profile | ||
44 | jgriffiths (https://github.com/jgriffiths) | 45 | jgriffiths (https://github.com/jgriffiths) |
45 | - make rpm packages support | 46 | - make rpm packages support |
46 | Tom Mellor (https://github.com/kalegrill) | 47 | Tom Mellor (https://github.com/kalegrill) |
@@ -189,5 +189,5 @@ $ man firejail-profile | |||
189 | 189 | ||
190 | ## New security profiles | 190 | ## New security profiles |
191 | 191 | ||
192 | lxterminal, Epiphany, cherrytree, Battle for Wesnoth, Hedgewars, qutebrowser, SlimJet | 192 | lxterminal, Epiphany, cherrytree, Battle for Wesnoth, Hedgewars, qutebrowser, SlimJet, qTox |
193 | 193 | ||
diff --git a/etc/qtox.profile b/etc/qtox.profile new file mode 100644 index 000000000..8e75f01e6 --- /dev/null +++ b/etc/qtox.profile | |||
@@ -0,0 +1,15 @@ | |||
1 | # qTox instant messaging profile | ||
2 | noblacklist ${HOME}/.config/tox | ||
3 | include /etc/firejail/disable-mgmt.inc | ||
4 | include /etc/firejail/disable-secret.inc | ||
5 | include /etc/firejail/disable-common.inc | ||
6 | include /etc/firejail/disable-devel.inc | ||
7 | include /etc/firejail/disable-terminals.inc | ||
8 | mkdir ${HOME}/.config/tox | ||
9 | whitelist ${HOME}/.config/tox | ||
10 | whitelist ${DOWNLOADS} | ||
11 | include /etc/firejail/whitelist-common.inc | ||
12 | caps.drop all | ||
13 | seccomp | ||
14 | protocol unix,inet,inet6 | ||
15 | noroot | ||
diff --git a/platform/debian/conffiles b/platform/debian/conffiles index 9f324c59f..a40ca2fdf 100644 --- a/platform/debian/conffiles +++ b/platform/debian/conffiles | |||
@@ -22,6 +22,7 @@ | |||
22 | /etc/firejail/audacious.profile | 22 | /etc/firejail/audacious.profile |
23 | /etc/firejail/clementine.profile | 23 | /etc/firejail/clementine.profile |
24 | /etc/firejail/epiphany.profile | 24 | /etc/firejail/epiphany.profile |
25 | /etc/firejail/qtox.profile | ||
25 | /etc/firejail/polari.profile | 26 | /etc/firejail/polari.profile |
26 | /etc/firejail/gnome-mplayer.profile | 27 | /etc/firejail/gnome-mplayer.profile |
27 | /etc/firejail/rhythmbox.profile | 28 | /etc/firejail/rhythmbox.profile |