merges

author: Tad <tad@spotco.us> 2018-11-29 02:08:23 -0500
committer: Tad <tad@spotco.us> 2018-11-29 02:09:04 -0500
commit: cc9db57343c3df0a9fc191e31273c955314c8f72 (patch)
tree: df2411810cf4e534af6ded52a11222da8ef25831
parent: Merge pull request #2281 from pirate486743186/mpsyt-profile (diff)
download: firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.tar.gz
firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.tar.zst
firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.zip
2 files changed, 22 insertions, 21 deletions
diff --git a/etc/mpsyt.profile b/etc/mpsyt.profile
index eb51a45cc..9fb52c0a8 100644
--- a/etc/mpsyt.profile
+++ b/etc/mpsyt.profile
@@ -2,9 +2,17 @@
 # Description: Terminal based YouTube player and downloader
 # This file is overwritten after every install/update
 # Persistent local customizations
-include /etc/firejail/mpsyt.local
+include mpsyt.local
 # Persistent global definitions
-include /etc/firejail/globals.local
+include globals.local
+# Allow python (blacklisted by disable-interpreters.inc)
+noblacklist ${PATH}/python2*
+noblacklist ${PATH}/python3*
+noblacklist /usr/lib/python2*
+noblacklist /usr/lib/python3*
+noblacklist /usr/local/lib/python2*
+noblacklist /usr/local/lib/python3*
 noblacklist ${HOME}/.config/mpv
 noblacklist ${HOME}/.mplayer
@@ -15,8 +23,14 @@ noblacklist ${MUSIC}
 noblacklist ${VIDEOS}
 noblacklist ${DOWNLOADS}
-mkdir ${HOME}/.config/mps-youtube
+include disable-common.inc
+include disable-devel.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+mkdir ${HOME}/.config/mps-youtube
 whitelist ${HOME}/.config/mpv
 whitelist ${HOME}/.mplayer
 whitelist ${HOME}/.config/mps-youtube
@@ -25,23 +39,8 @@ whitelist ${HOME}/mps
 whitelist ${MUSIC}
 whitelist ${VIDEOS}
 whitelist ${DOWNLOADS}
+include whitelist-common.inc
-# Allow python (blacklisted by disable-interpreters.inc)
+include whitelist-var-common.inc
-noblacklist ${PATH}/python2*
-noblacklist ${PATH}/python3*
-noblacklist /usr/lib/python2*
-noblacklist /usr/lib/python3*
-noblacklist /usr/local/lib/python2*
-noblacklist /usr/local/lib/python3*
-include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-devel.inc
-include /etc/firejail/disable-interpreters.inc
-include /etc/firejail/disable-passwdmgr.inc
-include /etc/firejail/disable-programs.inc
-include /etc/firejail/disable-xdg.inc
-include /etc/firejail/whitelist-var-common.inc
 apparmor
 caps.drop all
@@ -55,7 +54,7 @@ seccomp
 shell none
 tracelog
-private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env
+private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env,ffmpeg
 private-dev
 private-tmp
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index c26ac278f..68ef5e5d1 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -140,6 +140,7 @@ evolution
 exiftool
 falkon
 fbreader
+feedreader
 feh
 ffmpeg
 file-roller
@@ -290,6 +291,7 @@ min
 minetest
 mousepad
 mplayer
+mpsyt
 mpv
 ms-excel
 ms-office
author	Tad <tad@spotco.us>	2018-11-29 02:08:23 -0500
committer	Tad <tad@spotco.us>	2018-11-29 02:09:04 -0500
commit	cc9db57343c3df0a9fc191e31273c955314c8f72 (patch)
tree	df2411810cf4e534af6ded52a11222da8ef25831
parent	Merge pull request #2281 from pirate486743186/mpsyt-profile (diff)
download	firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.tar.gz firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.tar.zst firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.zip

diff --git a/etc/mpsyt.profile b/etc/mpsyt.profile index eb51a45cc..9fb52c0a8 100644 --- a/etc/mpsyt.profile +++ b/etc/mpsyt.profile
@@ -2,9 +2,17 @@
2	# Description: Terminal based YouTube player and downloader	2	# Description: Terminal based YouTube player and downloader
3	# This file is overwritten after every install/update	3	# This file is overwritten after every install/update
4	# Persistent local customizations	4	# Persistent local customizations
5	include /etc/firejail/mpsyt.local	5	include mpsyt.local
6	# Persistent global definitions	6	# Persistent global definitions
7	include /etc/firejail/globals.local	7	include globals.local
		8
		9	# Allow python (blacklisted by disable-interpreters.inc)
		10	noblacklist ${PATH}/python2*
		11	noblacklist ${PATH}/python3*
		12	noblacklist /usr/lib/python2*
		13	noblacklist /usr/lib/python3*
		14	noblacklist /usr/local/lib/python2*
		15	noblacklist /usr/local/lib/python3*
8		16
9	noblacklist ${HOME}/.config/mpv	17	noblacklist ${HOME}/.config/mpv
10	noblacklist ${HOME}/.mplayer	18	noblacklist ${HOME}/.mplayer
@@ -15,8 +23,14 @@ noblacklist ${MUSIC}
15	noblacklist ${VIDEOS}	23	noblacklist ${VIDEOS}
16	noblacklist ${DOWNLOADS}	24	noblacklist ${DOWNLOADS}
17		25
18	mkdir ${HOME}/.config/mps-youtube	26	include disable-common.inc
		27	include disable-devel.inc
		28	include disable-interpreters.inc
		29	include disable-passwdmgr.inc
		30	include disable-programs.inc
		31	include disable-xdg.inc
19		32
		33	mkdir ${HOME}/.config/mps-youtube
20	whitelist ${HOME}/.config/mpv	34	whitelist ${HOME}/.config/mpv
21	whitelist ${HOME}/.mplayer	35	whitelist ${HOME}/.mplayer
22	whitelist ${HOME}/.config/mps-youtube	36	whitelist ${HOME}/.config/mps-youtube
@@ -25,23 +39,8 @@ whitelist ${HOME}/mps
25	whitelist ${MUSIC}	39	whitelist ${MUSIC}
26	whitelist ${VIDEOS}	40	whitelist ${VIDEOS}
27	whitelist ${DOWNLOADS}	41	whitelist ${DOWNLOADS}
28		42	include whitelist-common.inc
29	# Allow python (blacklisted by disable-interpreters.inc)	43	include whitelist-var-common.inc
30	noblacklist ${PATH}/python2*
31	noblacklist ${PATH}/python3*
32	noblacklist /usr/lib/python2*
33	noblacklist /usr/lib/python3*
34	noblacklist /usr/local/lib/python2*
35	noblacklist /usr/local/lib/python3*
36
37	include /etc/firejail/disable-common.inc
38	include /etc/firejail/disable-devel.inc
39	include /etc/firejail/disable-interpreters.inc
40	include /etc/firejail/disable-passwdmgr.inc
41	include /etc/firejail/disable-programs.inc
42	include /etc/firejail/disable-xdg.inc
43
44	include /etc/firejail/whitelist-var-common.inc
45		44
46	apparmor	45	apparmor
47	caps.drop all	46	caps.drop all
@@ -55,7 +54,7 @@ seccomp
55	shell none	54	shell none
56	tracelog	55	tracelog
57		56
58	private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env	57	private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env,ffmpeg
59	private-dev	58	private-dev
60	private-tmp	59	private-tmp
61		60


diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config index c26ac278f..68ef5e5d1 100644 --- a/src/firecfg/firecfg.config +++ b/src/firecfg/firecfg.config
@@ -140,6 +140,7 @@ evolution
140	exiftool	140	exiftool
141	falkon	141	falkon
142	fbreader	142	fbreader
		143	feedreader
143	feh	144	feh
144	ffmpeg	145	ffmpeg
145	file-roller	146	file-roller
@@ -290,6 +291,7 @@ min
290	minetest	291	minetest
291	mousepad	292	mousepad
292	mplayer	293	mplayer
		294	mpsyt
293	mpv	295	mpv
294	ms-excel	296	ms-excel
295	ms-office	297	ms-office