diff options
author | smitsohu <smitsohu@gmail.com> | 2017-09-20 12:53:37 +0200 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2017-09-20 12:53:37 +0200 |
commit | 2b9070a76fc309a4155365520ba47413d9e5b16b (patch) | |
tree | 1db68d6260bc09f7d0c8790ce787358fc3951a48 | |
parent | Update man page since --private-dev allows disc devices like cdrom (diff) | |
download | firejail-2b9070a76fc309a4155365520ba47413d9e5b16b.tar.gz firejail-2b9070a76fc309a4155365520ba47413d9e5b16b.tar.zst firejail-2b9070a76fc309a4155365520ba47413d9e5b16b.zip |
remove some redundancies
* ~/.bash_history is already included in ~/.*_history, same file
* ~/.password-store is already included in disable-passwdmgr.inc (and not
whitelisted in browsers)
* ~/.local/share/applications is in whitelist-common.inc since recently
-rw-r--r-- | etc/disable-common.inc | 8 | ||||
-rw-r--r-- | etc/geary.profile | 1 | ||||
-rw-r--r-- | etc/thunderbird.profile | 1 |
3 files changed, 3 insertions, 7 deletions
diff --git a/etc/disable-common.inc b/etc/disable-common.inc index ca6ba9710..abce0fe57 100644 --- a/etc/disable-common.inc +++ b/etc/disable-common.inc | |||
@@ -2,15 +2,14 @@ | |||
2 | # Persistent customizations should go in a .local file. | 2 | # Persistent customizations should go in a .local file. |
3 | include /etc/firejail/disable-common.local | 3 | include /etc/firejail/disable-common.local |
4 | 4 | ||
5 | # History files and clipboard managers in $HOME | 5 | # History files in $HOME and clipboard managers |
6 | blacklist-nolog ${HOME}/.*_history | 6 | blacklist-nolog ${HOME}/.*_history |
7 | blacklist-nolog ${HOME}/.adobe | 7 | blacklist-nolog ${HOME}/.adobe |
8 | blacklist-nolog ${HOME}/.bash_history | 8 | blacklist-nolog ${HOME}/.cache/greenclip* |
9 | blacklist-nolog ${HOME}/.history | 9 | blacklist-nolog ${HOME}/.history |
10 | blacklist-nolog ${HOME}/.local/share/fish/fish_history | 10 | blacklist-nolog ${HOME}/.local/share/fish/fish_history |
11 | blacklist-nolog ${HOME}/.macromedia | 11 | blacklist-nolog ${HOME}/.macromedia |
12 | blacklist-nolog /tmp/clipmenu* | 12 | blacklist-nolog /tmp/clipmenu* |
13 | blacklist-nolog ${HOME}/.cache/greenclip* | ||
14 | 13 | ||
15 | # X11 session autostart | 14 | # X11 session autostart |
16 | # blacklist ${HOME}/.xpra - this will kill --x11=xpra cmdline option for all programs | 15 | # blacklist ${HOME}/.xpra - this will kill --x11=xpra cmdline option for all programs |
@@ -229,7 +228,6 @@ blacklist ${HOME}/.mutt/muttrc | |||
229 | blacklist ${HOME}/.muttrc | 228 | blacklist ${HOME}/.muttrc |
230 | blacklist ${HOME}/.netrc | 229 | blacklist ${HOME}/.netrc |
231 | blacklist ${HOME}/.pki | 230 | blacklist ${HOME}/.pki |
232 | blacklist ${HOME}/.password-store | ||
233 | blacklist ${HOME}/.smbcredentials | 231 | blacklist ${HOME}/.smbcredentials |
234 | blacklist ${HOME}/.ssh | 232 | blacklist ${HOME}/.ssh |
235 | blacklist /etc/group+ | 233 | blacklist /etc/group+ |
diff --git a/etc/geary.profile b/etc/geary.profile index 7878154a6..3ab4a21d8 100644 --- a/etc/geary.profile +++ b/etc/geary.profile | |||
@@ -14,7 +14,6 @@ noblacklist ~/.local/share/geary | |||
14 | mkdir ~/.gnupg | 14 | mkdir ~/.gnupg |
15 | mkdir ~/.local/share/geary | 15 | mkdir ~/.local/share/geary |
16 | whitelist ~/.gnupg | 16 | whitelist ~/.gnupg |
17 | whitelist ~/.local/share/applications | ||
18 | whitelist ~/.local/share/geary | 17 | whitelist ~/.local/share/geary |
19 | include /etc/firejail/whitelist-common.inc | 18 | include /etc/firejail/whitelist-common.inc |
20 | 19 | ||
diff --git a/etc/thunderbird.profile b/etc/thunderbird.profile index 17bf51873..8e878eb1c 100644 --- a/etc/thunderbird.profile +++ b/etc/thunderbird.profile | |||
@@ -20,7 +20,6 @@ mkdir ~/.thunderbird | |||
20 | whitelist ~/.cache/thunderbird | 20 | whitelist ~/.cache/thunderbird |
21 | whitelist ~/.gnupg | 21 | whitelist ~/.gnupg |
22 | whitelist ~/.icedove | 22 | whitelist ~/.icedove |
23 | whitelist ~/.local/share/applications | ||
24 | whitelist ~/.thunderbird | 23 | whitelist ~/.thunderbird |
25 | include /etc/firejail/whitelist-common.inc | 24 | include /etc/firejail/whitelist-common.inc |
26 | 25 | ||