aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar smitsohu <smitsohu@gmail.com>2017-10-31 03:07:56 +0100
committerLibravatar smitsohu <smitsohu@gmail.com>2017-10-31 03:07:56 +0100
commitc0eb76baf00ccd8348886e1b5307d08d6df27e1c (patch)
tree5109f1ecbc4408656a1a088360f572b314cc1947
parentharden kde (diff)
downloadfirejail-c0eb76baf00ccd8348886e1b5307d08d6df27e1c.tar.gz
firejail-c0eb76baf00ccd8348886e1b5307d08d6df27e1c.tar.zst
firejail-c0eb76baf00ccd8348886e1b5307d08d6df27e1c.zip
add kget
Diffstat
-rw-r--r--README.md2
-rw-r--r--RELNOTES2
-rw-r--r--etc/disable-programs.inc6
-rw-r--r--etc/kget.profile37
-rw-r--r--src/firecfg/firecfg.config1
5 files changed, 45 insertions, 3 deletions
diff --git a/README.md b/README.md
index 1d5054377..3532d7803 100644
--- a/README.md
+++ b/README.md
@@ -212,7 +212,7 @@ calligrawords, cin, dooble, dooble-qt4, fetchmail, freecad, freecadcmd, google-e
212imagej, karbon, kdenlive, krita, linphone, lmms, macrofusion, mpd, natron, Natron, 212imagej, karbon, kdenlive, krita, linphone, lmms, macrofusion, mpd, natron, Natron,
213ricochet, shotcut, teamspeak3, tor, tor-browser-en, Viber, x-terminal-emulator, zart, 213ricochet, shotcut, teamspeak3, tor, tor-browser-en, Viber, x-terminal-emulator, zart,
214conky, arch-audit, ffmpeg, bluefish, cliqz, cinelerra, openshot-qt, pinta, uefitool, 214conky, arch-audit, ffmpeg, bluefish, cliqz, cinelerra, openshot-qt, pinta, uefitool,
215aosp, pdfmod, gnome-ring, signal-desktop, xcalc, zaproxy, kopete 215aosp, pdfmod, gnome-ring, signal-desktop, xcalc, zaproxy, kopete, kget
216 216
217Upstreamed many profiles from the following sources: https://github.com/chiraag-nataraj/firejail-profiles, 217Upstreamed many profiles from the following sources: https://github.com/chiraag-nataraj/firejail-profiles,
218https://github.com/nyancat18/fe, and https://aur.archlinux.org/packages/firejail-profiles. 218https://github.com/nyancat18/fe, and https://aur.archlinux.org/packages/firejail-profiles.
diff --git a/RELNOTES b/RELNOTES
index 10800f6b0..6bedd26c0 100644
--- a/RELNOTES
+++ b/RELNOTES
@@ -36,7 +36,7 @@ firejail (0.9.51) baseline; urgency=low
36 mpd, natron, Natron, ricochet, shotcut, teamspeak3, tor, tor-browser-en, 36 mpd, natron, Natron, ricochet, shotcut, teamspeak3, tor, tor-browser-en,
37 Viber, x-terminal-emulator, zart, conky, arch-audit, ffmpeg, bluefish, 37 Viber, x-terminal-emulator, zart, conky, arch-audit, ffmpeg, bluefish,
38 cinelerra, openshot-qt, pinta, uefitool, aosp, pdfmod, gnome-ring, 38 cinelerra, openshot-qt, pinta, uefitool, aosp, pdfmod, gnome-ring,
39 xcalc, zaproxy, kopete, cliqz, signal-desktop 39 xcalc, zaproxy, kopete, cliqz, signal-desktop, kget
40 40
41 -- netblue30 <netblue30@yahoo.com> Thu, 14 Sep 2017 20:00:00 -0500 41 -- netblue30 <netblue30@yahoo.com> Thu, 14 Sep 2017 20:00:00 -0500
42 42
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 9bfef1f5e..73a2e6515 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -230,6 +230,7 @@ blacklist ${HOME}/.java
230blacklist ${HOME}/.jitsi 230blacklist ${HOME}/.jitsi
231blacklist ${HOME}/.kde/share/apps/gwenview 231blacklist ${HOME}/.kde/share/apps/gwenview
232blacklist ${HOME}/.kde/share/apps/kcookiejar 232blacklist ${HOME}/.kde/share/apps/kcookiejar
233blacklist ${HOME}/.kde/share/apps/kget
233blacklist ${HOME}/.kde/share/apps/khtml 234blacklist ${HOME}/.kde/share/apps/khtml
234blacklist ${HOME}/.kde/share/apps/konqsidebartng 235blacklist ${HOME}/.kde/share/apps/konqsidebartng
235blacklist ${HOME}/.kde/share/apps/konqueror 236blacklist ${HOME}/.kde/share/apps/konqueror
@@ -241,6 +242,7 @@ blacklist ${HOME}/.kde/share/config/digikam
241blacklist ${HOME}/.kde/share/config/gwenviewrc 242blacklist ${HOME}/.kde/share/config/gwenviewrc
242blacklist ${HOME}/.kde/share/config/k3brc 243blacklist ${HOME}/.kde/share/config/k3brc
243blacklist ${HOME}/.kde/share/config/kcookiejarrc 244blacklist ${HOME}/.kde/share/config/kcookiejarrc
245blacklist ${HOME}/.kde/share/config/kgetrc
244blacklist ${HOME}/.kde/share/config/khtmlrc 246blacklist ${HOME}/.kde/share/config/khtmlrc
245blacklist ${HOME}/.kde/share/config/konq_history 247blacklist ${HOME}/.kde/share/config/konq_history
246blacklist ${HOME}/.kde/share/config/konqsidebartngrc 248blacklist ${HOME}/.kde/share/config/konqsidebartngrc
@@ -251,6 +253,7 @@ blacklist ${HOME}/.kde/share/config/okularpartrc
251blacklist ${HOME}/.kde/share/config/okularrc 253blacklist ${HOME}/.kde/share/config/okularrc
252blacklist ${HOME}/.kde4/share/apps/gwenview 254blacklist ${HOME}/.kde4/share/apps/gwenview
253blacklist ${HOME}/.kde4/share/apps/kcookiejar 255blacklist ${HOME}/.kde4/share/apps/kcookiejar
256blacklist ${HOME}/.kde4/share/apps/kget
254blacklist ${HOME}/.kde4/share/apps/khtml 257blacklist ${HOME}/.kde4/share/apps/khtml
255blacklist ${HOME}/.kde4/share/apps/konqueror 258blacklist ${HOME}/.kde4/share/apps/konqueror
256blacklist ${HOME}/.kde4/share/apps/konqsidebartng 259blacklist ${HOME}/.kde4/share/apps/konqsidebartng
@@ -262,14 +265,15 @@ blacklist ${HOME}/.kde4/share/config/digikam
262blacklist ${HOME}/.kde4/share/config/gwenviewrc 265blacklist ${HOME}/.kde4/share/config/gwenviewrc
263blacklist ${HOME}/.kde4/share/config/k3brc 266blacklist ${HOME}/.kde4/share/config/k3brc
264blacklist ${HOME}/.kde4/share/config/kcookiejarrc 267blacklist ${HOME}/.kde4/share/config/kcookiejarrc
268blacklist ${HOME}/.kde4/share/config/kgetrc
265blacklist ${HOME}/.kde4/share/config/khtmlrc 269blacklist ${HOME}/.kde4/share/config/khtmlrc
266blacklist ${HOME}/.kde4/share/config/konq_history 270blacklist ${HOME}/.kde4/share/config/konq_history
267blacklist ${HOME}/.kde4/share/config/konqsidebartngrc 271blacklist ${HOME}/.kde4/share/config/konqsidebartngrc
268blacklist ${HOME}/.kde4/share/config/konquerorrc 272blacklist ${HOME}/.kde4/share/config/konquerorrc
269blacklist ${HOME}/.kde4/share/config/kopeterc 273blacklist ${HOME}/.kde4/share/config/kopeterc
274blacklist ${HOME}/.kde4/share/config/ktorrentrc
270blacklist ${HOME}/.kde4/share/config/okularpartrc 275blacklist ${HOME}/.kde4/share/config/okularpartrc
271blacklist ${HOME}/.kde4/share/config/okularrc 276blacklist ${HOME}/.kde4/share/config/okularrc
272blacklist ${HOME}/.kde4/share/config/ktorrentrc
273blacklist ${HOME}/.killingfloor 277blacklist ${HOME}/.killingfloor
274blacklist ${HOME}/.kino-history 278blacklist ${HOME}/.kino-history
275blacklist ${HOME}/.kinorc 279blacklist ${HOME}/.kinorc
diff --git a/etc/kget.profile b/etc/kget.profile
new file mode 100644
index 000000000..f6d7352c1
--- /dev/null
+++ b/etc/kget.profile
@@ -0,0 +1,37 @@
1# Firejail profile for kget
2# This file is overwritten after every install/update
3# Persistent local customizations
4include /etc/firejail/kget.local
5# Persistent global definitions
6include /etc/firejail/globals.local
7
8noblacklist ~/.kde/share/apps/kget
9noblacklist ~/.kde/share/config/kgetrc
10noblacklist ~/.kde4/share/apps/kget
11noblacklist ~/.kde4/share/config/kgetrc
12
13include /etc/firejail/disable-common.inc
14include /etc/firejail/disable-devel.inc
15include /etc/firejail/disable-passwdmgr.inc
16include /etc/firejail/disable-programs.inc
17
18include /etc/firejail/whitelist-var-common.inc
19
20caps.drop all
21netfilter
22nodvd
23nogroups
24nonewprivs
25noroot
26nosound
27notv
28novideo
29protocol unix,inet,inet6
30seccomp
31
32private-dev
33private-tmp
34
35# memory-deny-write-execute
36noexec ${HOME}
37noexec /tmp
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index 6a3fcadd4..75bd2e388 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -186,6 +186,7 @@ keepass2
186keepassx 186keepassx
187keepassx2 187keepassx2
188keepassxc 188keepassxc
189kget
189kino 190kino
190kmail 191kmail
191knotes 192knotes
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-07 03:02:50 +0000