aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar startx2017 <vradu.startx@yandex.com>2017-06-16 08:37:52 -0400
committerLibravatar startx2017 <vradu.startx@yandex.com>2017-06-16 08:37:52 -0400
commit5d485d66fc444677917ed11f46b50067dabe9245 (patch)
tree76bcbd0b70a655f6c9c48aa778397430c62156b0
parentcurl profile (diff)
downloadfirejail-5d485d66fc444677917ed11f46b50067dabe9245.tar.gz
firejail-5d485d66fc444677917ed11f46b50067dabe9245.tar.zst
firejail-5d485d66fc444677917ed11f46b50067dabe9245.zip
mplayer and smplayer profiles
Diffstat
-rw-r--r--README4
-rw-r--r--etc/disable-programs.inc2
-rw-r--r--etc/mplayer.profile31
-rw-r--r--etc/smplayer.profile32
-rw-r--r--src/firecfg/firecfg.config2
5 files changed, 70 insertions, 1 deletions
diff --git a/README b/README
index 22f835a10..2c3fbf67b 100644
--- a/README
+++ b/README
@@ -401,9 +401,11 @@ startx2017 (https://github.com/startx2017)
401 - firecfg fix: create ~/.local/share/applications directory if it doesn't exist 401 - firecfg fix: create ~/.local/share/applications directory if it doesn't exist
402 - firejail.config cleanup 402 - firejail.config cleanup
403 - --quiet fixes 403 - --quiet fixes
404 - 0.9.38-LTS branch maintainer 404 - bugfixes branches maintainer
405 - firemon --top speed-up 405 - firemon --top speed-up
406 - Blender and 2048-qt profiles 406 - Blender and 2048-qt profiles
407 - handbrake profile
408 - mplayer and smplayer profiles
407thewisenerd (https://github.com/thewisenerd) 409thewisenerd (https://github.com/thewisenerd)
408 - allow multiple private-home commands 410 - allow multiple private-home commands
409 - use $SHELL variable if the shell is not specified 411 - use $SHELL variable if the shell is not specified
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 4d77218de..3b2c150fc 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -140,6 +140,7 @@ blacklist ${HOME}/.config/redshift.conf
140blacklist ${HOME}/.config/scribus 140blacklist ${HOME}/.config/scribus
141blacklist ${HOME}/.config/skypeforlinux 141blacklist ${HOME}/.config/skypeforlinux
142blacklist ${HOME}/.config/slimjet 142blacklist ${HOME}/.config/slimjet
143blacklist ${HOME}/.config/smplayer
143blacklist ${HOME}/.config/spotify 144blacklist ${HOME}/.config/spotify
144blacklist ${HOME}/.config/stellarium 145blacklist ${HOME}/.config/stellarium
145blacklist ${HOME}/.config/synfig 146blacklist ${HOME}/.config/synfig
@@ -306,6 +307,7 @@ blacklist ${HOME}/.mcabberrc
306blacklist ${HOME}/.mediathek3 307blacklist ${HOME}/.mediathek3
307blacklist ${HOME}/.mozilla 308blacklist ${HOME}/.mozilla
308blacklist ${HOME}/.mpdconf 309blacklist ${HOME}/.mpdconf
310blacklist ${HOME}/.mplayer
309blacklist ${HOME}/.msmtprc 311blacklist ${HOME}/.msmtprc
310blacklist ${HOME}/.multimc5 312blacklist ${HOME}/.multimc5
311blacklist ${HOME}/.mutt 313blacklist ${HOME}/.mutt
diff --git a/etc/mplayer.profile b/etc/mplayer.profile
new file mode 100644
index 000000000..879223e1a
--- /dev/null
+++ b/etc/mplayer.profile
@@ -0,0 +1,31 @@
1# Persistent global definitions go here
2include /etc/firejail/globals.local
3
4# This file is overwritten during software install.
5# Persistent customizations should go in a .local file.
6include /etc/firejail/mplayer.local
7
8# mplayer profile
9noblacklist ${HOME}/.mplayer
10
11include /etc/firejail/disable-common.inc
12include /etc/firejail/disable-programs.inc
13include /etc/firejail/disable-devel.inc
14include /etc/firejail/disable-passwdmgr.inc
15
16caps.drop all
17#ipc-namespace
18netfilter
19# nogroups
20nonewprivs
21noroot
22protocol unix,inet,inet6,netlink
23seccomp
24shell none
25
26private-dev
27private-tmp
28private-bin mplayer
29
30noexec ${HOME}
31noexec /tmp
diff --git a/etc/smplayer.profile b/etc/smplayer.profile
new file mode 100644
index 000000000..6a5c115b7
--- /dev/null
+++ b/etc/smplayer.profile
@@ -0,0 +1,32 @@
1# Persistent global definitions go here
2include /etc/firejail/globals.local
3
4# This file is overwritten during software install.
5# Persistent customizations should go in a .local file.
6include /etc/firejail/smplayer.local
7
8# smplayer profile
9noblacklist ${HOME}/.config/smplayer
10noblacklist ${HOME}/.mplayer
11
12include /etc/firejail/disable-common.inc
13include /etc/firejail/disable-programs.inc
14include /etc/firejail/disable-devel.inc
15include /etc/firejail/disable-passwdmgr.inc
16
17caps.drop all
18#ipc-namespace
19netfilter
20# nogroups
21nonewprivs
22noroot
23protocol unix,inet,inet6,netlink
24seccomp
25shell none
26
27private-dev
28private-tmp
29private-bin smplayer,mplayer
30
31noexec ${HOME}
32noexec /tmp
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index 444b304ab..7bac70887 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -153,6 +153,7 @@ mediathekview
153meld 153meld
154midori 154midori
155mousepad 155mousepad
156mplayer
156mpv 157mpv
157multimc5 158multimc5
158mumble 159mumble
@@ -199,6 +200,7 @@ skanlite
199skype 200skype
200skypeforlinux 201skypeforlinux
201slack 202slack
203smplayer
202soffice 204soffice
203spectacle 205spectacle
204spotify 206spotify
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-06-30 11:12:36 +0000