aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar Reed Riley <reed@riley.engineer>2022-01-20 10:57:11 -0500
committerLibravatar Reed Riley <reed@riley.engineer>2022-01-21 14:30:31 -0500
commitbb27feb8047347d187d8fe3aa434d86bfef0225a (patch)
tree0d354d5e6d3fe1fda7ab72a0e4c14c1342000bc7
parentsteam.profile: allow /etc/vulkan (#4862) (diff)
downloadfirejail-bb27feb8047347d187d8fe3aa434d86bfef0225a.tar.gz
firejail-bb27feb8047347d187d8fe3aa434d86bfef0225a.tar.zst
firejail-bb27feb8047347d187d8fe3aa434d86bfef0225a.zip
add a profile for cointop
Diffstat
-rw-r--r--etc/inc/disable-programs.inc1
-rw-r--r--etc/profile-a-l/cointop.profile63
-rw-r--r--src/firecfg/firecfg.config1
3 files changed, 65 insertions, 0 deletions
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc
index 144c9219c..16ccfb1e3 100644
--- a/etc/inc/disable-programs.inc
+++ b/etc/inc/disable-programs.inc
@@ -377,6 +377,7 @@ blacklist ${HOME}/.config/chromium-flags.conf
377blacklist ${HOME}/.config/clipit 377blacklist ${HOME}/.config/clipit
378blacklist ${HOME}/.config/cliqz 378blacklist ${HOME}/.config/cliqz
379blacklist ${HOME}/.config/cmus 379blacklist ${HOME}/.config/cmus
380blacklist ${HOME}/.config/cointop
380blacklist ${HOME}/.config/com.github.bleakgrey.tootle 381blacklist ${HOME}/.config/com.github.bleakgrey.tootle
381blacklist ${HOME}/.config/corebird 382blacklist ${HOME}/.config/corebird
382blacklist ${HOME}/.config/cower 383blacklist ${HOME}/.config/cower
diff --git a/etc/profile-a-l/cointop.profile b/etc/profile-a-l/cointop.profile
new file mode 100644
index 000000000..4349f58fc
--- /dev/null
+++ b/etc/profile-a-l/cointop.profile
@@ -0,0 +1,63 @@
1# Firejail profile for cointop
2# Description: TUI for tracking cryptocurrency stats
3# This file is overwritten after every install/update
4# Persistent local customizations
5include cointop.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.config/cointop
10
11blacklist ${RUNUSER}
12
13include disable-common.inc
14include disable-devel.inc
15include disable-exec.inc
16include disable-interpreters.inc
17include disable-proc.inc
18include disable-programs.inc
19include disable-shell.inc
20include disable-X11.inc
21include disable-xdg.inc
22
23mkdir ${HOME}/.config/cointop
24whitelist ${HOME}/.config/cointop
25include whitelist-common.inc
26include whitelist-runuser-common.inc
27include whitelist-usr-share-common.inc
28include whitelist-var-common.inc
29
30apparmor
31caps.drop all
32ipc-namespace
33machine-id
34netfilter
35no3d
36nodvd
37nogroups
38noinput
39nonewprivs
40noprinters
41noroot
42nosound
43notv
44nou2f
45novideo
46protocol inet,inet6
47seccomp
48seccomp.block-secondary
49shell none
50tracelog
51
52disable-mnt
53private-bin cointop
54private-cache
55private-dev
56private-etc alternatives,ca-certificates,crypto-policies,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,nsswitch.conf,pki,protocols,resolv.conf,rpc,services,ssl
57private-lib
58private-tmp
59
60dbus-user none
61dbus-system none
62
63memory-deny-write-execute
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index 29b9b3807..48fd80496 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -152,6 +152,7 @@ cmus
152code 152code
153code-oss 153code-oss
154codium 154codium
155cointop
155cola 156cola
156colorful 157colorful
157com.github.bleakgrey.tootle 158com.github.bleakgrey.tootle
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-05 23:16:22 +0000