diff options
author | Kelvin M. Klann <kmk3.code@protonmail.com> | 2023-01-27 21:31:54 -0300 |
---|---|---|
committer | Kelvin M. Klann <kmk3.code@protonmail.com> | 2023-01-30 19:19:50 -0300 |
commit | 7f834c4cd3bcc86cac07764b99b114dd7271c654 (patch) | |
tree | 6530576164266efd55c783729aa817f5268b5e9b | |
parent | disable-common.inc: sort history file paths (diff) | |
download | firejail-7f834c4cd3bcc86cac07764b99b114dd7271c654.tar.gz firejail-7f834c4cd3bcc86cac07764b99b114dd7271c654.tar.zst firejail-7f834c4cd3bcc86cac07764b99b114dd7271c654.zip |
disable-common.inc: add more ro editor/browser paths
Move some paths from mutt.profile and neomutt.profile.
Added on commit 6b9bfad37 ("Fix python; add read-only to editors/cli
browsers;re-add cache directory", 2020-12-29) / PR #3849.
Misc: This is a follow-up to #5626.
-rw-r--r-- | etc/inc/disable-common.inc | 3 | ||||
-rw-r--r-- | etc/profile-a-l/elinks.profile | 2 | ||||
-rw-r--r-- | etc/profile-m-z/mutt.profile | 3 | ||||
-rw-r--r-- | etc/profile-m-z/nano.profile | 1 | ||||
-rw-r--r-- | etc/profile-m-z/neomutt.profile | 3 | ||||
-rw-r--r-- | etc/profile-m-z/w3m.profile | 1 |
6 files changed, 7 insertions, 6 deletions
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc index 66a309d85..1e84370a4 100644 --- a/etc/inc/disable-common.inc +++ b/etc/inc/disable-common.inc | |||
@@ -330,6 +330,7 @@ read-only ${HOME}/.cargo/env | |||
330 | read-only ${HOME}/.config/nvim | 330 | read-only ${HOME}/.config/nvim |
331 | read-only ${HOME}/.config/pkcs11 | 331 | read-only ${HOME}/.config/pkcs11 |
332 | read-only ${HOME}/.dotfiles | 332 | read-only ${HOME}/.dotfiles |
333 | read-only ${HOME}/.elinks | ||
333 | read-only ${HOME}/.emacs | 334 | read-only ${HOME}/.emacs |
334 | read-only ${HOME}/.emacs.d | 335 | read-only ${HOME}/.emacs.d |
335 | read-only ${HOME}/.exrc | 336 | read-only ${HOME}/.exrc |
@@ -345,6 +346,7 @@ read-only ${HOME}/.msmtprc | |||
345 | read-only ${HOME}/.mutt/muttrc | 346 | read-only ${HOME}/.mutt/muttrc |
346 | read-only ${HOME}/.muttrc | 347 | read-only ${HOME}/.muttrc |
347 | read-only ${HOME}/.nano | 348 | read-only ${HOME}/.nano |
349 | read-only ${HOME}/.nanorc | ||
348 | read-only ${HOME}/.npmrc | 350 | read-only ${HOME}/.npmrc |
349 | read-only ${HOME}/.pythonrc.py | 351 | read-only ${HOME}/.pythonrc.py |
350 | read-only ${HOME}/.reportbugrc | 352 | read-only ${HOME}/.reportbugrc |
@@ -352,6 +354,7 @@ read-only ${HOME}/.tmux.conf | |||
352 | read-only ${HOME}/.vim | 354 | read-only ${HOME}/.vim |
353 | read-only ${HOME}/.viminfo | 355 | read-only ${HOME}/.viminfo |
354 | read-only ${HOME}/.vimrc | 356 | read-only ${HOME}/.vimrc |
357 | read-only ${HOME}/.w3m | ||
355 | read-only ${HOME}/.xmonad | 358 | read-only ${HOME}/.xmonad |
356 | read-only ${HOME}/.xscreensaver | 359 | read-only ${HOME}/.xscreensaver |
357 | read-only ${HOME}/.yarnrc | 360 | read-only ${HOME}/.yarnrc |
diff --git a/etc/profile-a-l/elinks.profile b/etc/profile-a-l/elinks.profile index a3596bb5e..aab3b3902 100644 --- a/etc/profile-a-l/elinks.profile +++ b/etc/profile-a-l/elinks.profile | |||
@@ -17,5 +17,7 @@ whitelist ${HOME}/.elinks | |||
17 | 17 | ||
18 | private-bin elinks | 18 | private-bin elinks |
19 | 19 | ||
20 | read-write ${HOME}/.elinks | ||
21 | |||
20 | # Redirect | 22 | # Redirect |
21 | include links-common.profile | 23 | include links-common.profile |
diff --git a/etc/profile-m-z/mutt.profile b/etc/profile-m-z/mutt.profile index bce56743a..904b0cd7c 100644 --- a/etc/profile-m-z/mutt.profile +++ b/etc/profile-m-z/mutt.profile | |||
@@ -133,8 +133,5 @@ dbus-user none | |||
133 | dbus-system none | 133 | dbus-system none |
134 | 134 | ||
135 | memory-deny-write-execute | 135 | memory-deny-write-execute |
136 | read-only ${HOME}/.elinks | ||
137 | read-only ${HOME}/.nanorc | ||
138 | read-only ${HOME}/.signature | 136 | read-only ${HOME}/.signature |
139 | read-only ${HOME}/.w3m | ||
140 | restrict-namespaces | 137 | restrict-namespaces |
diff --git a/etc/profile-m-z/nano.profile b/etc/profile-m-z/nano.profile index a20eb3828..0814742c1 100644 --- a/etc/profile-m-z/nano.profile +++ b/etc/profile-m-z/nano.profile | |||
@@ -56,4 +56,5 @@ dbus-user none | |||
56 | dbus-system none | 56 | dbus-system none |
57 | 57 | ||
58 | memory-deny-write-execute | 58 | memory-deny-write-execute |
59 | read-write ${HOME}/.nanorc | ||
59 | restrict-namespaces | 60 | restrict-namespaces |
diff --git a/etc/profile-m-z/neomutt.profile b/etc/profile-m-z/neomutt.profile index c255a85c9..f343226ae 100644 --- a/etc/profile-m-z/neomutt.profile +++ b/etc/profile-m-z/neomutt.profile | |||
@@ -125,8 +125,5 @@ dbus-user none | |||
125 | dbus-system none | 125 | dbus-system none |
126 | 126 | ||
127 | memory-deny-write-execute | 127 | memory-deny-write-execute |
128 | read-only ${HOME}/.elinks | ||
129 | read-only ${HOME}/.nanorc | ||
130 | read-only ${HOME}/.signature | 128 | read-only ${HOME}/.signature |
131 | read-only ${HOME}/.w3m | ||
132 | restrict-namespaces | 129 | restrict-namespaces |
diff --git a/etc/profile-m-z/w3m.profile b/etc/profile-m-z/w3m.profile index fab5315aa..1e111f83e 100644 --- a/etc/profile-m-z/w3m.profile +++ b/etc/profile-m-z/w3m.profile | |||
@@ -68,4 +68,5 @@ dbus-user none | |||
68 | dbus-system none | 68 | dbus-system none |
69 | 69 | ||
70 | memory-deny-write-execute | 70 | memory-deny-write-execute |
71 | read-write ${HOME}/.w3m | ||
71 | restrict-namespaces | 72 | restrict-namespaces |