aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar netblue30 <netblue30@yahoo.com>2018-07-24 11:03:06 -0500
committerLibravatar GitHub <noreply@github.com>2018-07-24 11:03:06 -0500
commit1ce30d384f9164f1f6ebd883f8ca216792b3e8c0 (patch)
treee60c82fd5d4e7185c788ee3eca5ad8ae887a8d64
parentAdd ${MUSIC}, ${VIDEOS}, ${PICTURES}, ${DOCUMENTS}, and ${DESKTOP} (Fixes #259) (diff)
parentInitial adding of disable-xdg.inc (diff)
downloadfirejail-1ce30d384f9164f1f6ebd883f8ca216792b3e8c0.tar.gz
firejail-1ce30d384f9164f1f6ebd883f8ca216792b3e8c0.tar.zst
firejail-1ce30d384f9164f1f6ebd883f8ca216792b3e8c0.zip
Merge pull request #2060 from SkewedZeppelin/disable-xdg
WIP: Add new disable-xdg.inc
Diffstat
-rw-r--r--etc/2048-qt.profile5
-rw-r--r--etc/Fritzing.profile2
-rw-r--r--etc/android-studio.profile2
-rw-r--r--etc/aosp.profile1
-rw-r--r--etc/apktool.profile1
-rw-r--r--etc/arch-audit.profile1
-rw-r--r--etc/archaudit-report.profile1
-rw-r--r--etc/disable-xdg.inc10
-rw-r--r--etc/gnome-books.profile2
-rw-r--r--etc/gnome-calculator.profile1
-rw-r--r--etc/gnome-chess.profile1
-rw-r--r--etc/gnome-clocks.profile1
-rw-r--r--etc/gnome-contacts.profile3
-rw-r--r--etc/gnome-documents.profile2
-rw-r--r--etc/gnome-font-viewer.profile1
-rw-r--r--etc/gnome-logs.profile1
-rw-r--r--etc/gnome-maps.profile1
-rw-r--r--etc/gnome-weather.profile1
18 files changed, 36 insertions, 1 deletions
diff --git a/etc/2048-qt.profile b/etc/2048-qt.profile
index 2e74e74e3..1e7472bd9 100644
--- a/etc/2048-qt.profile
+++ b/etc/2048-qt.profile
@@ -14,6 +14,11 @@ include /etc/firejail/disable-interpreters.inc
14include /etc/firejail/disable-passwdmgr.inc 14include /etc/firejail/disable-passwdmgr.inc
15include /etc/firejail/disable-programs.inc 15include /etc/firejail/disable-programs.inc
16 16
17mkdir ${HOME}/.config/2048-qt
18mkdir ${HOME}/.config/xiaoyong
19whitelist ${HOME}/.config/2048-qt
20whitelist ${HOME}/.config/xiaoyong
21include /etc/firejail/whitelist-common.inc
17include /etc/firejail/whitelist-var-common.inc 22include /etc/firejail/whitelist-var-common.inc
18 23
19caps.drop all 24caps.drop all
diff --git a/etc/Fritzing.profile b/etc/Fritzing.profile
index 453b9979e..1eb103b47 100644
--- a/etc/Fritzing.profile
+++ b/etc/Fritzing.profile
@@ -6,12 +6,14 @@ include /etc/firejail/Fritzing.local
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist ${HOME}/.config/Fritzing 8noblacklist ${HOME}/.config/Fritzing
9noblacklist ${DOCUMENTS}
9 10
10include /etc/firejail/disable-common.inc 11include /etc/firejail/disable-common.inc
11include /etc/firejail/disable-devel.inc 12include /etc/firejail/disable-devel.inc
12include /etc/firejail/disable-interpreters.inc 13include /etc/firejail/disable-interpreters.inc
13include /etc/firejail/disable-passwdmgr.inc 14include /etc/firejail/disable-passwdmgr.inc
14include /etc/firejail/disable-programs.inc 15include /etc/firejail/disable-programs.inc
16include /etc/firejail/disable-xdg.inc
15 17
16include /etc/firejail/whitelist-var-common.inc 18include /etc/firejail/whitelist-var-common.inc
17 19
diff --git a/etc/android-studio.profile b/etc/android-studio.profile
index d845bd4b9..a69bf3966 100644
--- a/etc/android-studio.profile
+++ b/etc/android-studio.profile
@@ -15,10 +15,12 @@ noblacklist ${HOME}/.java
15noblacklist ${HOME}/.local/share/JetBrains 15noblacklist ${HOME}/.local/share/JetBrains
16noblacklist ${HOME}/.ssh 16noblacklist ${HOME}/.ssh
17noblacklist ${HOME}/.tooling 17noblacklist ${HOME}/.tooling
18noblacklist ${DOCUMENTS}
18 19
19include /etc/firejail/disable-common.inc 20include /etc/firejail/disable-common.inc
20include /etc/firejail/disable-passwdmgr.inc 21include /etc/firejail/disable-passwdmgr.inc
21include /etc/firejail/disable-programs.inc 22include /etc/firejail/disable-programs.inc
23include /etc/firejail/disable-xdg.inc
22 24
23caps.drop all 25caps.drop all
24netfilter 26netfilter
diff --git a/etc/aosp.profile b/etc/aosp.profile
index 5ceef9348..8622d6acd 100644
--- a/etc/aosp.profile
+++ b/etc/aosp.profile
@@ -21,6 +21,7 @@ noblacklist ${HOME}/.tooling
21include /etc/firejail/disable-common.inc 21include /etc/firejail/disable-common.inc
22include /etc/firejail/disable-passwdmgr.inc 22include /etc/firejail/disable-passwdmgr.inc
23include /etc/firejail/disable-programs.inc 23include /etc/firejail/disable-programs.inc
24include /etc/firejail/disable-xdg.inc
24 25
25include /etc/firejail/whitelist-var-common.inc 26include /etc/firejail/whitelist-var-common.inc
26 27
diff --git a/etc/apktool.profile b/etc/apktool.profile
index ded17ca58..2203d7b8c 100644
--- a/etc/apktool.profile
+++ b/etc/apktool.profile
@@ -9,6 +9,7 @@ include /etc/firejail/globals.local
9include /etc/firejail/disable-common.inc 9include /etc/firejail/disable-common.inc
10include /etc/firejail/disable-passwdmgr.inc 10include /etc/firejail/disable-passwdmgr.inc
11include /etc/firejail/disable-programs.inc 11include /etc/firejail/disable-programs.inc
12include /etc/firejail/disable-xdg.inc
12 13
13caps.drop all 14caps.drop all
14net none 15net none
diff --git a/etc/arch-audit.profile b/etc/arch-audit.profile
index 0987ce149..956f0d63a 100644
--- a/etc/arch-audit.profile
+++ b/etc/arch-audit.profile
@@ -14,6 +14,7 @@ include /etc/firejail/disable-devel.inc
14include /etc/firejail/disable-interpreters.inc 14include /etc/firejail/disable-interpreters.inc
15include /etc/firejail/disable-passwdmgr.inc 15include /etc/firejail/disable-passwdmgr.inc
16include /etc/firejail/disable-programs.inc 16include /etc/firejail/disable-programs.inc
17include /etc/firejail/disable-xdg.inc
17 18
18caps.drop all 19caps.drop all
19ipc-namespace 20ipc-namespace
diff --git a/etc/archaudit-report.profile b/etc/archaudit-report.profile
index f4340faf3..27b15412f 100644
--- a/etc/archaudit-report.profile
+++ b/etc/archaudit-report.profile
@@ -14,6 +14,7 @@ include /etc/firejail/disable-devel.inc
14include /etc/firejail/disable-interpreters.inc 14include /etc/firejail/disable-interpreters.inc
15include /etc/firejail/disable-passwdmgr.inc 15include /etc/firejail/disable-passwdmgr.inc
16include /etc/firejail/disable-programs.inc 16include /etc/firejail/disable-programs.inc
17include /etc/firejail/disable-xdg.inc
17 18
18include /etc/firejail/whitelist-common.inc 19include /etc/firejail/whitelist-common.inc
19 20
diff --git a/etc/disable-xdg.inc b/etc/disable-xdg.inc
new file mode 100644
index 000000000..554e3a7d5
--- /dev/null
+++ b/etc/disable-xdg.inc
@@ -0,0 +1,10 @@
1# This file is overwritten during software install.
2# Persistent customizations should go in a .local file.
3include /etc/firejail/disable-xdg.local
4
5#blacklist ${DESKTOP}
6blacklist ${DOCUMENTS}
7#blacklist ${DOWNLOADS}
8blacklist ${MUSIC}
9blacklist ${PICTURES}
10blacklist ${VIDEOS}
diff --git a/etc/gnome-books.profile b/etc/gnome-books.profile
index 4274981b5..6fc2671d8 100644
--- a/etc/gnome-books.profile
+++ b/etc/gnome-books.profile
@@ -8,12 +8,14 @@ include /etc/firejail/globals.local
8# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them 8# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them
9 9
10noblacklist ${HOME}/.cache/org.gnome.Books 10noblacklist ${HOME}/.cache/org.gnome.Books
11noblacklist ${DOCUMENTS}
11 12
12include /etc/firejail/disable-common.inc 13include /etc/firejail/disable-common.inc
13include /etc/firejail/disable-devel.inc 14include /etc/firejail/disable-devel.inc
14include /etc/firejail/disable-interpreters.inc 15include /etc/firejail/disable-interpreters.inc
15include /etc/firejail/disable-passwdmgr.inc 16include /etc/firejail/disable-passwdmgr.inc
16include /etc/firejail/disable-programs.inc 17include /etc/firejail/disable-programs.inc
18include /etc/firejail/disable-xdg.inc
17 19
18include /etc/firejail/whitelist-var-common.inc 20include /etc/firejail/whitelist-var-common.inc
19 21
diff --git a/etc/gnome-calculator.profile b/etc/gnome-calculator.profile
index b915b0bce..6ace0b3ec 100644
--- a/etc/gnome-calculator.profile
+++ b/etc/gnome-calculator.profile
@@ -11,6 +11,7 @@ include /etc/firejail/disable-devel.inc
11include /etc/firejail/disable-passwdmgr.inc 11include /etc/firejail/disable-passwdmgr.inc
12include /etc/firejail/disable-interpreters.inc 12include /etc/firejail/disable-interpreters.inc
13include /etc/firejail/disable-programs.inc 13include /etc/firejail/disable-programs.inc
14include /etc/firejail/disable-xdg.inc
14 15
15include /etc/firejail/whitelist-common.inc 16include /etc/firejail/whitelist-common.inc
16include /etc/firejail/whitelist-var-common.inc 17include /etc/firejail/whitelist-var-common.inc
diff --git a/etc/gnome-chess.profile b/etc/gnome-chess.profile
index 59a3d59af..8422e1836 100644
--- a/etc/gnome-chess.profile
+++ b/etc/gnome-chess.profile
@@ -12,6 +12,7 @@ include /etc/firejail/disable-devel.inc
12include /etc/firejail/disable-interpreters.inc 12include /etc/firejail/disable-interpreters.inc
13include /etc/firejail/disable-passwdmgr.inc 13include /etc/firejail/disable-passwdmgr.inc
14include /etc/firejail/disable-programs.inc 14include /etc/firejail/disable-programs.inc
15include /etc/firejail/disable-xdg.inc
15 16
16include /etc/firejail/whitelist-var-common.inc 17include /etc/firejail/whitelist-var-common.inc
17 18
diff --git a/etc/gnome-clocks.profile b/etc/gnome-clocks.profile
index 103a5ff73..4251f70ed 100644
--- a/etc/gnome-clocks.profile
+++ b/etc/gnome-clocks.profile
@@ -11,6 +11,7 @@ include /etc/firejail/disable-devel.inc
11include /etc/firejail/disable-interpreters.inc 11include /etc/firejail/disable-interpreters.inc
12include /etc/firejail/disable-passwdmgr.inc 12include /etc/firejail/disable-passwdmgr.inc
13include /etc/firejail/disable-programs.inc 13include /etc/firejail/disable-programs.inc
14include /etc/firejail/disable-xdg.inc
14 15
15include /etc/firejail/whitelist-var-common.inc 16include /etc/firejail/whitelist-var-common.inc
16 17
diff --git a/etc/gnome-contacts.profile b/etc/gnome-contacts.profile
index d4d670998..0e6f70e04 100644
--- a/etc/gnome-contacts.profile
+++ b/etc/gnome-contacts.profile
@@ -5,15 +5,16 @@ include /etc/firejail/gnome-contacts.local
5# Persistent global definitions 5# Persistent global definitions
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist ${DOCUMENTS}
8 9
9include /etc/firejail/disable-common.inc 10include /etc/firejail/disable-common.inc
10include /etc/firejail/disable-devel.inc 11include /etc/firejail/disable-devel.inc
11include /etc/firejail/disable-interpreters.inc 12include /etc/firejail/disable-interpreters.inc
12include /etc/firejail/disable-passwdmgr.inc 13include /etc/firejail/disable-passwdmgr.inc
13include /etc/firejail/disable-programs.inc 14include /etc/firejail/disable-programs.inc
15include /etc/firejail/disable-xdg.inc
14 16
15include /etc/firejail/whitelist-common.inc 17include /etc/firejail/whitelist-common.inc
16
17include /etc/firejail/whitelist-var-common.inc 18include /etc/firejail/whitelist-var-common.inc
18 19
19caps.drop all 20caps.drop all
diff --git a/etc/gnome-documents.profile b/etc/gnome-documents.profile
index 8a67d6e5c..a7ebb48c8 100644
--- a/etc/gnome-documents.profile
+++ b/etc/gnome-documents.profile
@@ -8,12 +8,14 @@ include /etc/firejail/globals.local
8# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them 8# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them
9 9
10noblacklist ${HOME}/.config/libreoffice 10noblacklist ${HOME}/.config/libreoffice
11noblacklist ${DOCUMENTS}
11 12
12include /etc/firejail/disable-common.inc 13include /etc/firejail/disable-common.inc
13include /etc/firejail/disable-devel.inc 14include /etc/firejail/disable-devel.inc
14include /etc/firejail/disable-interpreters.inc 15include /etc/firejail/disable-interpreters.inc
15include /etc/firejail/disable-passwdmgr.inc 16include /etc/firejail/disable-passwdmgr.inc
16include /etc/firejail/disable-programs.inc 17include /etc/firejail/disable-programs.inc
18include /etc/firejail/disable-xdg.inc
17 19
18caps.drop all 20caps.drop all
19netfilter 21netfilter
diff --git a/etc/gnome-font-viewer.profile b/etc/gnome-font-viewer.profile
index ebd937f9b..71cd06643 100644
--- a/etc/gnome-font-viewer.profile
+++ b/etc/gnome-font-viewer.profile
@@ -11,6 +11,7 @@ include /etc/firejail/disable-devel.inc
11include /etc/firejail/disable-interpreters.inc 11include /etc/firejail/disable-interpreters.inc
12include /etc/firejail/disable-passwdmgr.inc 12include /etc/firejail/disable-passwdmgr.inc
13include /etc/firejail/disable-programs.inc 13include /etc/firejail/disable-programs.inc
14include /etc/firejail/disable-xdg.inc
14 15
15include /etc/firejail/whitelist-var-common.inc 16include /etc/firejail/whitelist-var-common.inc
16 17
diff --git a/etc/gnome-logs.profile b/etc/gnome-logs.profile
index ca4e5f204..f08142113 100644
--- a/etc/gnome-logs.profile
+++ b/etc/gnome-logs.profile
@@ -10,6 +10,7 @@ include /etc/firejail/disable-devel.inc
10include /etc/firejail/disable-interpreters.inc 10include /etc/firejail/disable-interpreters.inc
11include /etc/firejail/disable-passwdmgr.inc 11include /etc/firejail/disable-passwdmgr.inc
12include /etc/firejail/disable-programs.inc 12include /etc/firejail/disable-programs.inc
13include /etc/firejail/disable-xdg.inc
13 14
14whitelist /var/log/journal 15whitelist /var/log/journal
15include /etc/firejail/whitelist-var-common.inc 16include /etc/firejail/whitelist-var-common.inc
diff --git a/etc/gnome-maps.profile b/etc/gnome-maps.profile
index b5364e48d..da73d9450 100644
--- a/etc/gnome-maps.profile
+++ b/etc/gnome-maps.profile
@@ -14,6 +14,7 @@ include /etc/firejail/disable-devel.inc
14include /etc/firejail/disable-interpreters.inc 14include /etc/firejail/disable-interpreters.inc
15include /etc/firejail/disable-passwdmgr.inc 15include /etc/firejail/disable-passwdmgr.inc
16include /etc/firejail/disable-programs.inc 16include /etc/firejail/disable-programs.inc
17include /etc/firejail/disable-xdg.inc
17 18
18include /etc/firejail/whitelist-var-common.inc 19include /etc/firejail/whitelist-var-common.inc
19 20
diff --git a/etc/gnome-weather.profile b/etc/gnome-weather.profile
index 64482b246..28c9e6d86 100644
--- a/etc/gnome-weather.profile
+++ b/etc/gnome-weather.profile
@@ -14,6 +14,7 @@ include /etc/firejail/disable-devel.inc
14include /etc/firejail/disable-interpreters.inc 14include /etc/firejail/disable-interpreters.inc
15include /etc/firejail/disable-passwdmgr.inc 15include /etc/firejail/disable-passwdmgr.inc
16include /etc/firejail/disable-programs.inc 16include /etc/firejail/disable-programs.inc
17include /etc/firejail/disable-xdg.inc
17 18
18include /etc/firejail/whitelist-var-common.inc 19include /etc/firejail/whitelist-var-common.inc
19 20
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-03 00:06:40 +0000