diff options
author | Tad <tad@spotco.us> | 2018-08-23 14:51:36 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2018-08-23 14:51:36 -0400 |
commit | ea1836ca825eee01504db8cb5870bbd0bf868e2d (patch) | |
tree | 2fb00cf8b592c5415e5b31e5d63390ef30e105b3 | |
parent | Merges (diff) | |
download | firejail-ea1836ca825eee01504db8cb5870bbd0bf868e2d.tar.gz firejail-ea1836ca825eee01504db8cb5870bbd0bf868e2d.tar.zst firejail-ea1836ca825eee01504db8cb5870bbd0bf868e2d.zip |
Fixup obs.profile (no python)
-rw-r--r-- | etc/obs.profile | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/etc/obs.profile b/etc/obs.profile index 6d638e6e6..611ecdd67 100644 --- a/etc/obs.profile +++ b/etc/obs.profile | |||
@@ -10,6 +10,12 @@ noblacklist ${MUSIC} | |||
10 | noblacklist ${PICTURES} | 10 | noblacklist ${PICTURES} |
11 | noblacklist ${VIDEOS} | 11 | noblacklist ${VIDEOS} |
12 | 12 | ||
13 | # Allow python (blacklisted by disable-interpreters.inc) | ||
14 | noblacklist ${PATH}/python2* | ||
15 | noblacklist ${PATH}/python3* | ||
16 | noblacklist /usr/lib/python2* | ||
17 | noblacklist /usr/lib/python3* | ||
18 | |||
13 | include /etc/firejail/disable-common.inc | 19 | include /etc/firejail/disable-common.inc |
14 | include /etc/firejail/disable-devel.inc | 20 | include /etc/firejail/disable-devel.inc |
15 | include /etc/firejail/disable-interpreters.inc | 21 | include /etc/firejail/disable-interpreters.inc |
@@ -17,6 +23,8 @@ include /etc/firejail/disable-passwdmgr.inc | |||
17 | include /etc/firejail/disable-programs.inc | 23 | include /etc/firejail/disable-programs.inc |
18 | include /etc/firejail/disable-xdg.inc | 24 | include /etc/firejail/disable-xdg.inc |
19 | 25 | ||
26 | include /etc/firejail/whitelist-var-common.inc | ||
27 | |||
20 | caps.drop all | 28 | caps.drop all |
21 | nodvd | 29 | nodvd |
22 | nogroups | 30 | nogroups |
@@ -28,7 +36,7 @@ seccomp | |||
28 | shell none | 36 | shell none |
29 | tracelog | 37 | tracelog |
30 | 38 | ||
31 | private-bin obs | 39 | private-bin obs,python* |
32 | private-cache | 40 | private-cache |
33 | private-dev | 41 | private-dev |
34 | private-tmp | 42 | private-tmp |