diff options
author | Jean Lucas <jean@4ray.co> | 2018-04-28 10:51:56 -0400 |
---|---|---|
committer | Jean Lucas <jean@4ray.co> | 2018-04-28 13:40:21 -0400 |
commit | 8719c8f53def8eb8e6ffe23ca8078e4645d829e8 (patch) | |
tree | 2ad80f0e78694cba6403f1f503918b1ef165de46 | |
parent | Merge pull request #1914 from flacks/profiles/gajim (diff) | |
download | firejail-8719c8f53def8eb8e6ffe23ca8078e4645d829e8.tar.gz firejail-8719c8f53def8eb8e6ffe23ca8078e4645d829e8.tar.zst firejail-8719c8f53def8eb8e6ffe23ca8078e4645d829e8.zip |
Amend WebStorm profile
- Add Android development-related paths
- Don't blacklist node/nvm for e.g. Node.js-related development
- Remove noexec from /tmp for e.g. same Node.js case
-rw-r--r-- | etc/webstorm.profile | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/etc/webstorm.profile b/etc/webstorm.profile index 6da71224f..93bcb50bb 100644 --- a/etc/webstorm.profile +++ b/etc/webstorm.profile | |||
@@ -6,12 +6,17 @@ include /etc/firejail/webstorm.local | |||
6 | include /etc/firejail/globals.local | 6 | include /etc/firejail/globals.local |
7 | 7 | ||
8 | noblacklist ${HOME}/.WebStorm* | 8 | noblacklist ${HOME}/.WebStorm* |
9 | noblacklist ${HOME}/.android | ||
9 | noblacklist ${HOME}/.gitconfig | 10 | noblacklist ${HOME}/.gitconfig |
11 | noblacklist ${HOME}/.gradle | ||
10 | noblacklist ${HOME}/.java | 12 | noblacklist ${HOME}/.java |
11 | noblacklist ${HOME}/.local/share/JetBrains | 13 | noblacklist ${HOME}/.local/share/JetBrains |
12 | noblacklist ${HOME}/.ssh | 14 | noblacklist ${HOME}/.ssh |
13 | noblacklist ${HOME}/.tooling | 15 | noblacklist ${HOME}/.tooling |
14 | 16 | ||
17 | noblacklist ${PATH}/node | ||
18 | noblacklist ${HOME}/.nvm | ||
19 | |||
15 | include /etc/firejail/disable-common.inc | 20 | include /etc/firejail/disable-common.inc |
16 | include /etc/firejail/disable-passwdmgr.inc | 21 | include /etc/firejail/disable-passwdmgr.inc |
17 | include /etc/firejail/disable-programs.inc | 22 | include /etc/firejail/disable-programs.inc |
@@ -31,6 +36,4 @@ seccomp | |||
31 | shell none | 36 | shell none |
32 | 37 | ||
33 | private-dev | 38 | private-dev |
34 | # private-tmp | 39 | private-tmp |
35 | |||
36 | noexec /tmp | ||