new profile mpsyt.profile

author: pirate486743186 <okgomdjgbmoij@gmail.com> 2018-11-28 00:16:03 +0100
committer: GitHub <noreply@github.com> 2018-11-28 00:16:03 +0100
commit: e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5 (patch)
tree: d80da78f275f35181e6df7dc50bab7ff4a3fd392
parent: Merge pull request #2275 from pirate486743186/python-local (diff)
download: firejail-e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5.tar.gz
firejail-e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5.tar.zst
firejail-e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5.zip
1 files changed, 47 insertions, 0 deletions
diff --git a/etc/mpsyt.profile b/etc/mpsyt.profile
new file mode 100644
index 000000000..c64b71ad6
--- /dev/null
+++ b/etc/mpsyt.profile
@@ -0,0 +1,47 @@
+# Firejail profile for mpsyt
+# Description: Terminal based YouTube player and downloader
+# This file is overwritten after every install/update
+# Persistent local customizations
+include /etc/firejail/mpsyt.local
+# Persistent global definitions
+include /etc/firejail/globals.local
+noblacklist ${HOME}/.config/mpv
+noblacklist ${HOME}/.mplayer
+noblacklist ${HOME}/.config/mps-youtube
+noblacklist ${HOME}/.netrc
+noblacklist ${HOME}/mps
+noblacklist ${MUSIC}
+noblacklist ${VIDEOS}
+# Allow python (blacklisted by disable-interpreters.inc)
+noblacklist ${PATH}/python2*
+noblacklist ${PATH}/python3*
+noblacklist /usr/lib/python2*
+noblacklist /usr/lib/python3*
+noblacklist /usr/local/lib/python2*
+noblacklist /usr/local/lib/python3*
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-interpreters.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-xdg.inc
+include /etc/firejail/whitelist-var-common.inc
+apparmor
+caps.drop all
+netfilter
+# Seems to cause issues with Nvidia drivers sometimes
+nogroups
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+shell none
+tracelog
+private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env
+private-dev
author	pirate486743186 <okgomdjgbmoij@gmail.com>	2018-11-28 00:16:03 +0100
committer	GitHub <noreply@github.com>	2018-11-28 00:16:03 +0100
commit	e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5 (patch)
tree	d80da78f275f35181e6df7dc50bab7ff4a3fd392
parent	Merge pull request #2275 from pirate486743186/python-local (diff)
download	firejail-e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5.tar.gz firejail-e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5.tar.zst firejail-e17b48fcae3fe73416db08cb3a9d001e0cfcaeb5.zip

diff --git a/etc/mpsyt.profile b/etc/mpsyt.profile new file mode 100644 index 000000000..c64b71ad6 --- /dev/null +++ b/etc/mpsyt.profile
@@ -0,0 +1,47 @@
	1	# Firejail profile for mpsyt
	2	# Description: Terminal based YouTube player and downloader
	3	# This file is overwritten after every install/update
	4	# Persistent local customizations
	5	include /etc/firejail/mpsyt.local
	6	# Persistent global definitions
	7	include /etc/firejail/globals.local
	8
	9	noblacklist ${HOME}/.config/mpv
	10	noblacklist ${HOME}/.mplayer
	11	noblacklist ${HOME}/.config/mps-youtube
	12	noblacklist ${HOME}/.netrc
	13	noblacklist ${HOME}/mps
	14	noblacklist ${MUSIC}
	15	noblacklist ${VIDEOS}
	16
	17	# Allow python (blacklisted by disable-interpreters.inc)
	18	noblacklist ${PATH}/python2*
	19	noblacklist ${PATH}/python3*
	20	noblacklist /usr/lib/python2*
	21	noblacklist /usr/lib/python3*
	22	noblacklist /usr/local/lib/python2*
	23	noblacklist /usr/local/lib/python3*
	24
	25	include /etc/firejail/disable-common.inc
	26	include /etc/firejail/disable-devel.inc
	27	include /etc/firejail/disable-interpreters.inc
	28	include /etc/firejail/disable-passwdmgr.inc
	29	include /etc/firejail/disable-programs.inc
	30	include /etc/firejail/disable-xdg.inc
	31
	32	include /etc/firejail/whitelist-var-common.inc
	33
	34	apparmor
	35	caps.drop all
	36	netfilter
	37	# Seems to cause issues with Nvidia drivers sometimes
	38	nogroups
	39	nonewprivs
	40	noroot
	41	protocol unix,inet,inet6
	42	seccomp
	43	shell none
	44	tracelog
	45
	46	private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env
	47	private-dev