diff options
author | rusty-snake <print_hello_world+Public@protonmail.com> | 2019-04-24 13:15:07 +0200 |
---|---|---|
committer | rusty-snake <print_hello_world+Public@protonmail.com> | 2019-04-24 13:15:07 +0200 |
commit | 0d42e12f11825f84d6bf6f9c667cd16272a3700c (patch) | |
tree | a8113166e33594fcee57eaad93d707ccb84d7a13 | |
parent | blacklist .git-credentials & .config/git (#2663) … (diff) | |
parent | blacklist .git-credential & .config/git (#2663) … (diff) | |
download | firejail-0d42e12f11825f84d6bf6f9c667cd16272a3700c.tar.gz firejail-0d42e12f11825f84d6bf6f9c667cd16272a3700c.tar.zst firejail-0d42e12f11825f84d6bf6f9c667cd16272a3700c.zip |
Merge branch 'master' of github.com:netblue30/firejail
-rw-r--r-- | etc/android-studio.profile | 44 | ||||
-rw-r--r-- | etc/aosp.profile | 46 | ||||
-rw-r--r-- | etc/atom.profile | 42 | ||||
-rw-r--r-- | etc/brackets.profile | 39 | ||||
-rw-r--r-- | etc/clion.profile | 39 | ||||
-rw-r--r-- | etc/code.profile | 47 | ||||
-rw-r--r-- | etc/disable-programs.inc | 738 | ||||
-rw-r--r-- | etc/geany.profile | 38 | ||||
-rw-r--r-- | etc/gedit.profile | 51 | ||||
-rw-r--r-- | etc/git.profile | 52 | ||||
-rw-r--r-- | etc/gitg.profile | 45 | ||||
-rw-r--r-- | etc/github-desktop.profile | 50 | ||||
-rw-r--r-- | etc/gnome-builder.profile | 37 | ||||
-rw-r--r-- | etc/idea.sh.profile | 43 | ||||
-rw-r--r-- | etc/meld.profile | 62 | ||||
-rw-r--r-- | etc/webstorm.profile | 44 |
16 files changed, 16 insertions, 1401 deletions
diff --git a/etc/android-studio.profile b/etc/android-studio.profile index ff7fb6711..ba54697e1 100644 --- a/etc/android-studio.profile +++ b/etc/android-studio.profile | |||
@@ -1,43 +1 @@ | |||
1 | # Firejail profile for android-studio | ]0;firejail /usr/bin/meld ./etc/android-studio_LOCAL_29017.profile ./etc/android-studio_BASE_29017.profile ./etc/android-studio_REMOTE_29017.profile \ No newline at end of file | |
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include android-studio.local | ||
5 | # Persistent global definitions | ||
6 | include globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.AndroidStudio* | ||
9 | noblacklist ${HOME}/.android | ||
10 | noblacklist ${HOME}/.config/git | ||
11 | noblacklist ${HOME}/.gitconfig | ||
12 | noblacklist ${HOME}/.git-credentials | ||
13 | noblacklist ${HOME}/.gradle | ||
14 | noblacklist ${HOME}/.jack-server | ||
15 | noblacklist ${HOME}/.jack-settings | ||
16 | noblacklist ${HOME}/.java | ||
17 | noblacklist ${HOME}/.local/share/JetBrains | ||
18 | noblacklist ${HOME}/.ssh | ||
19 | noblacklist ${HOME}/.tooling | ||
20 | |||
21 | include disable-common.inc | ||
22 | include disable-passwdmgr.inc | ||
23 | include disable-programs.inc | ||
24 | |||
25 | include whitelist-var-common.inc | ||
26 | |||
27 | caps.drop all | ||
28 | netfilter | ||
29 | nodvd | ||
30 | nogroups | ||
31 | nonewprivs | ||
32 | noroot | ||
33 | notv | ||
34 | novideo | ||
35 | protocol unix,inet,inet6 | ||
36 | seccomp | ||
37 | shell none | ||
38 | |||
39 | private-cache | ||
40 | # private-tmp | ||
41 | |||
42 | # noexec /tmp breaks 'Android Profiler' | ||
43 | #noexec /tmp | ||
diff --git a/etc/aosp.profile b/etc/aosp.profile index bdfefa923..98c23139b 100644 --- a/etc/aosp.profile +++ b/etc/aosp.profile | |||
@@ -1,45 +1 @@ | |||
1 | # Firejail profile for aosp | ]0;firejail /usr/bin/meld ./etc/aosp_LOCAL_29017.profile ./etc/aosp_BASE_29017.profile ./etc/aosp_REMOTE_29017.profile \ No newline at end of file | |
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include aosp.local | ||
5 | # Persistent global definitions | ||
6 | include globals.local | ||
7 | |||
8 | |||
9 | noblacklist ${HOME}/.android | ||
10 | noblacklist ${HOME}/.bash_history | ||
11 | noblacklist ${HOME}/.config/git | ||
12 | noblacklist ${HOME}/.gitconfig | ||
13 | noblacklist ${HOME}/.git-credentials | ||
14 | noblacklist ${HOME}/.gradle | ||
15 | noblacklist ${HOME}/.jack-server | ||
16 | noblacklist ${HOME}/.jack-settings | ||
17 | noblacklist ${HOME}/.java | ||
18 | noblacklist ${HOME}/.repo_.gitconfig.json | ||
19 | noblacklist ${HOME}/.repoconfig | ||
20 | noblacklist ${HOME}/.ssh | ||
21 | noblacklist ${HOME}/.tooling | ||
22 | |||
23 | include disable-common.inc | ||
24 | include disable-passwdmgr.inc | ||
25 | include disable-programs.inc | ||
26 | include disable-xdg.inc | ||
27 | |||
28 | include whitelist-var-common.inc | ||
29 | |||
30 | caps.drop all | ||
31 | ipc-namespace | ||
32 | netfilter | ||
33 | no3d | ||
34 | nodvd | ||
35 | nogroups | ||
36 | nonewprivs | ||
37 | noroot | ||
38 | nosound | ||
39 | notv | ||
40 | novideo | ||
41 | protocol unix,inet,inet6 | ||
42 | #seccomp | ||
43 | shell none | ||
44 | |||
45 | private-tmp | ||
diff --git a/etc/atom.profile b/etc/atom.profile index a3c62284c..7700cc0be 100644 --- a/etc/atom.profile +++ b/etc/atom.profile | |||
@@ -1,41 +1 @@ | |||
1 | # Firejail profile for atom | ]0;firejail /usr/bin/meld ./etc/atom_LOCAL_29017.profile ./etc/atom_BASE_29017.profile ./etc/atom_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: A hackable text editor for the 21st Century | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include atom.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.atom | ||
10 | noblacklist ${HOME}/.config/Atom | ||
11 | noblacklist ${HOME}/.config/git | ||
12 | noblacklist ${HOME}/.cargo/config | ||
13 | noblacklist ${HOME}/.cargo/registry | ||
14 | noblacklist ${HOME}/.gitconfig | ||
15 | noblacklist ${HOME}/.git-credentials | ||
16 | noblacklist ${HOME}/.pythonrc.py | ||
17 | |||
18 | include disable-common.inc | ||
19 | include disable-exec.inc | ||
20 | include disable-passwdmgr.inc | ||
21 | include disable-programs.inc | ||
22 | |||
23 | caps.drop all | ||
24 | # net none | ||
25 | netfilter | ||
26 | nodbus | ||
27 | nodvd | ||
28 | nogroups | ||
29 | nonewprivs | ||
30 | noroot | ||
31 | nosound | ||
32 | notv | ||
33 | nou2f | ||
34 | novideo | ||
35 | protocol unix,inet,inet6,netlink | ||
36 | seccomp | ||
37 | shell none | ||
38 | |||
39 | private-cache | ||
40 | private-dev | ||
41 | private-tmp | ||
diff --git a/etc/brackets.profile b/etc/brackets.profile index fa0d7e592..6f05e496a 100644 --- a/etc/brackets.profile +++ b/etc/brackets.profile | |||
@@ -1,38 +1 @@ | |||
1 | # Firejail profile for brackets | ]0;firejail /usr/bin/meld ./etc/brackets_LOCAL_29017.profile ./etc/brackets_BASE_29017.profile ./etc/brackets_REMOTE_29017.profile \ No newline at end of file | |
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include brackets.local | ||
5 | # Persistent global definitions | ||
6 | include globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.config/Brackets | ||
9 | #noblacklist /opt/brackets/ | ||
10 | #noblacklist /opt/google/ | ||
11 | # Uncomment the the next two lines if you are developing rust. | ||
12 | # or put it in your brackets.local | ||
13 | #noblacklist ${HOME}/.cargo/config | ||
14 | #noblacklist ${HOME}/.cargo/registry | ||
15 | noblacklist ${HOME}/.config/git | ||
16 | noblacklist ${HOME}/.gitconfig | ||
17 | noblacklist ${HOME}/.git-credentials | ||
18 | |||
19 | include disable-common.inc | ||
20 | include disable-passwdmgr.inc | ||
21 | include disable-programs.inc | ||
22 | |||
23 | caps.drop all | ||
24 | netfilter | ||
25 | nodvd | ||
26 | nogroups | ||
27 | nonewprivs | ||
28 | noroot | ||
29 | nosound | ||
30 | notv | ||
31 | nou2f | ||
32 | novideo | ||
33 | protocol unix,inet,inet6,netlink | ||
34 | seccomp.drop @clock,@cpu-emulation,@debug,@module,@obsolete,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,iopl,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,pciconfig_iobase,pciconfig_read,pciconfig_write,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,s390_mmio_read,s390_mmio_write,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice | ||
35 | shell none | ||
36 | |||
37 | private-cache | ||
38 | private-dev | ||
diff --git a/etc/clion.profile b/etc/clion.profile index b27d93684..29b6116b0 100644 --- a/etc/clion.profile +++ b/etc/clion.profile | |||
@@ -1,38 +1 @@ | |||
1 | # Firejail profile for CLion | ]0;firejail /usr/bin/meld ./etc/clion_LOCAL_29017.profile ./etc/clion_BASE_29017.profile ./etc/clion_REMOTE_29017.profile \ No newline at end of file | |
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include clion.local | ||
5 | # Persistent global definitions | ||
6 | include globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.CLion* | ||
9 | noblacklist ${HOME}/.config/git | ||
10 | noblacklist ${HOME}/.gitconfig | ||
11 | noblacklist ${HOME}/.git-credentials | ||
12 | noblacklist ${HOME}/.java | ||
13 | noblacklist ${HOME}/.local/share/JetBrains | ||
14 | noblacklist ${HOME}/.ssh | ||
15 | noblacklist ${HOME}/.tooling | ||
16 | |||
17 | include disable-common.inc | ||
18 | include disable-passwdmgr.inc | ||
19 | include disable-programs.inc | ||
20 | |||
21 | caps.drop all | ||
22 | netfilter | ||
23 | nodvd | ||
24 | nogroups | ||
25 | nonewprivs | ||
26 | noroot | ||
27 | notv | ||
28 | nou2f | ||
29 | novideo | ||
30 | protocol unix,inet,inet6 | ||
31 | seccomp | ||
32 | shell none | ||
33 | |||
34 | private-cache | ||
35 | private-dev | ||
36 | # private-tmp | ||
37 | |||
38 | noexec /tmp | ||
diff --git a/etc/code.profile b/etc/code.profile index 16678459e..04eb6aff4 100644 --- a/etc/code.profile +++ b/etc/code.profile | |||
@@ -1,46 +1 @@ | |||
1 | # Firejail profile for Visual Studio Code | ]0;firejail /usr/bin/meld ./etc/code_LOCAL_29017.profile ./etc/code_BASE_29017.profile ./etc/code_REMOTE_29017.profile \ No newline at end of file | |
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include code.local | ||
5 | # Persistent global definitions | ||
6 | include globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.cargo/config | ||
9 | noblacklist ${HOME}/.cargo/registry | ||
10 | noblacklist ${HOME}/.config/Code | ||
11 | noblacklist ${HOME}/.config/Code - OSS | ||
12 | noblacklist ${HOME}/.config/git | ||
13 | noblacklist ${HOME}/.gitconfig | ||
14 | noblacklist ${HOME}/.git-credentials | ||
15 | noblacklist ${HOME}/.pythonrc.py | ||
16 | noblacklist ${HOME}/.vscode | ||
17 | noblacklist ${HOME}/.vscode-oss | ||
18 | |||
19 | include disable-common.inc | ||
20 | include disable-passwdmgr.inc | ||
21 | include disable-programs.inc | ||
22 | |||
23 | caps.drop all | ||
24 | net none | ||
25 | netfilter | ||
26 | nodvd | ||
27 | nogroups | ||
28 | nonewprivs | ||
29 | noroot | ||
30 | nosound | ||
31 | notv | ||
32 | nou2f | ||
33 | novideo | ||
34 | protocol unix,inet,inet6,netlink | ||
35 | seccomp | ||
36 | shell none | ||
37 | |||
38 | private-cache | ||
39 | private-dev | ||
40 | private-tmp | ||
41 | |||
42 | # Disabling noexec ${HOME} for now since it will | ||
43 | # probably interfere with running some programmes | ||
44 | # in VS Code | ||
45 | # noexec ${HOME} | ||
46 | noexec /tmp | ||
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index f0d6611ad..874411088 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -1,737 +1 @@ | |||
1 | # This file is overwritten during software install. | ]0;firejail /usr/bin/meld ./etc/disable-programs_LOCAL_29017.inc ./etc/disable-programs_BASE_29017.inc ./etc/disable-programs_REMOTE_29017.inc \ No newline at end of file | |
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-programs.local | ||
4 | |||
5 | blacklist ${HOME}/Arduino | ||
6 | blacklist ${HOME}/Monero/wallets | ||
7 | blacklist ${HOME}/Nextcloud/Notes | ||
8 | blacklist ${HOME}/SoftMaker | ||
9 | blacklist ${HOME}/Standard Notes Backups | ||
10 | blacklist ${HOME}/wallet.dat | ||
11 | blacklist ${HOME}/.*coin | ||
12 | blacklist ${HOME}/.8pecxstudios | ||
13 | blacklist ${HOME}/.AndroidStudio* | ||
14 | blacklist ${HOME}/.Atom | ||
15 | blacklist ${HOME}/.CLion* | ||
16 | blacklist ${HOME}/.FBReader | ||
17 | blacklist ${HOME}/.FontForge | ||
18 | blacklist ${HOME}/.IdeaIC* | ||
19 | blacklist ${HOME}/.LuminanceHDR | ||
20 | blacklist ${HOME}/.Mathematica | ||
21 | blacklist ${HOME}/.Natron | ||
22 | blacklist ${HOME}/.PlayOnLinux | ||
23 | blacklist ${HOME}/.PyCharm* | ||
24 | blacklist ${HOME}/.Sayonara | ||
25 | blacklist ${HOME}/.Skype | ||
26 | blacklist ${HOME}/.Steam | ||
27 | blacklist ${HOME}/.Steampath | ||
28 | blacklist ${HOME}/.Steampid | ||
29 | blacklist ${HOME}/.TelegramDesktop | ||
30 | blacklist ${HOME}/.ViberPC | ||
31 | blacklist ${HOME}/.VirtualBox | ||
32 | blacklist ${HOME}/.VSCodium | ||
33 | blacklist ${HOME}/.WebStorm* | ||
34 | blacklist ${HOME}/.Wolfram Research | ||
35 | blacklist ${HOME}/.ZAP | ||
36 | blacklist ${HOME}/.aMule | ||
37 | blacklist ${HOME}/.android | ||
38 | blacklist ${HOME}/.anydesk | ||
39 | blacklist ${HOME}/.arduino15 | ||
40 | blacklist ${HOME}/.aria2 | ||
41 | blacklist ${HOME}/.arm | ||
42 | blacklist ${HOME}/.asunder_album_artist | ||
43 | blacklist ${HOME}/.asunder_album_genre | ||
44 | blacklist ${HOME}/.asunder_album_title | ||
45 | blacklist ${HOME}/.atom | ||
46 | blacklist ${HOME}/.attic | ||
47 | blacklist ${HOME}/.audacity-data | ||
48 | blacklist ${HOME}/.bcast5 | ||
49 | blacklist ${HOME}/.bibletime | ||
50 | blacklist ${HOME}/.bitcoin | ||
51 | blacklist ${HOME}/.bogofilter | ||
52 | blacklist ${HOME}/.bzf | ||
53 | blacklist ${HOME}/.claws-mail | ||
54 | blacklist ${HOME}/.cliqz | ||
55 | blacklist ${HOME}/.clonk | ||
56 | blacklist ${HOME}/.config/0ad | ||
57 | blacklist ${HOME}/.config/2048-qt | ||
58 | blacklist ${HOME}/.config/Atom | ||
59 | blacklist ${HOME}/.config/Audaciousrc | ||
60 | blacklist ${HOME}/.config/Authenticator | ||
61 | blacklist ${HOME}/.config/Beaker Browser | ||
62 | blacklist ${HOME}/.config/Bitcoin | ||
63 | blacklist ${HOME}/.config/Brackets | ||
64 | blacklist ${HOME}/.config/BraveSoftware | ||
65 | blacklist ${HOME}/.config/Clementine | ||
66 | blacklist ${HOME}/.config/Code | ||
67 | blacklist ${HOME}/.config/Code - OSS | ||
68 | blacklist ${HOME}/.config/Code Industry | ||
69 | blacklist ${HOME}/.config/Cryptocat | ||
70 | blacklist ${HOME}/.config/Enox | ||
71 | blacklist ${HOME}/.config/Franz | ||
72 | blacklist ${HOME}/.config/FreeCAD | ||
73 | blacklist ${HOME}/.config/Fritzing | ||
74 | blacklist ${HOME}/.config/GIMP | ||
75 | blacklist ${HOME}/.config/GitHub Desktop | ||
76 | blacklist ${HOME}/.config/Gitter | ||
77 | blacklist ${HOME}/.config/Google | ||
78 | blacklist ${HOME}/.config/Google Play Music Desktop Player | ||
79 | blacklist ${HOME}/.config/Gpredict | ||
80 | blacklist ${HOME}/.config/INRIA | ||
81 | blacklist ${HOME}/.config/InSilmaril | ||
82 | blacklist ${HOME}/.config/Kid3 | ||
83 | blacklist ${HOME}/.config/Luminance | ||
84 | blacklist ${HOME}/.config/Meltytech | ||
85 | blacklist ${HOME}/.config/Mendeley Ltd. | ||
86 | blacklist ${HOME}/.config/Min | ||
87 | blacklist ${HOME}/.config/Mousepad | ||
88 | blacklist ${HOME}/.config/Mumble | ||
89 | blacklist ${HOME}/.config/MusE | ||
90 | blacklist ${HOME}/.config/MuseScore | ||
91 | blacklist ${HOME}/.config/MusicBrainz | ||
92 | blacklist ${HOME}/.config/Nathan Osman | ||
93 | blacklist ${HOME}/.config/Nylas Mail | ||
94 | blacklist ${HOME}/.config/PBE | ||
95 | blacklist ${HOME}/.config/Qlipper | ||
96 | blacklist ${HOME}/.config/QMediathekView | ||
97 | blacklist ${HOME}/.config/QuiteRss | ||
98 | blacklist ${HOME}/.config/QuiteRssrc | ||
99 | blacklist ${HOME}/.config/Rambox | ||
100 | blacklist ${HOME}/.config/Riot | ||
101 | blacklist ${HOME}/.config/Rocket.Chat | ||
102 | blacklist ${HOME}/.config/Signal | ||
103 | blacklist ${HOME}/.config/Slack | ||
104 | blacklist ${HOME}/.config/Standard Notes | ||
105 | blacklist ${HOME}/.config/SubDownloader | ||
106 | blacklist ${HOME}/.config/Thunar | ||
107 | blacklist ${HOME}/.config/VirtualBox | ||
108 | blacklist ${HOME}/.config/Wire | ||
109 | blacklist ${HOME}/.config/akonadi* | ||
110 | blacklist ${HOME}/.config/akregatorrc | ||
111 | blacklist ${HOME}/.config/ardour4 | ||
112 | blacklist ${HOME}/.config/ardour5 | ||
113 | blacklist ${HOME}/.config/arkrc | ||
114 | blacklist ${HOME}/.config/artha.conf | ||
115 | blacklist ${HOME}/.config/asunder | ||
116 | blacklist ${HOME}/.config/atril | ||
117 | blacklist ${HOME}/.config/audacious | ||
118 | blacklist ${HOME}/.config/aweather | ||
119 | blacklist ${HOME}/.config/baloofilerc | ||
120 | blacklist ${HOME}/.config/baloorc | ||
121 | blacklist ${HOME}/.config/blender | ||
122 | blacklist ${HOME}/.config/bless | ||
123 | blacklist ${HOME}/.config/bnox | ||
124 | blacklist ${HOME}/.config/borg | ||
125 | blacklist ${HOME}/.config/brasero | ||
126 | blacklist ${HOME}/.config/brave | ||
127 | blacklist ${HOME}/.config/caja | ||
128 | blacklist ${HOME}/.config/calibre | ||
129 | blacklist ${HOME}/.config/catfish | ||
130 | blacklist ${HOME}/.config/celluloid | ||
131 | blacklist ${HOME}/.config/cherrytree | ||
132 | blacklist ${HOME}/.config/chromium | ||
133 | blacklist ${HOME}/.config/chromium-dev | ||
134 | blacklist ${HOME}/.config/chromium-flags.conf | ||
135 | blacklist ${HOME}/.config/clipit | ||
136 | blacklist ${HOME}/.config/cliqz | ||
137 | blacklist ${HOME}/.config/cmus | ||
138 | blacklist ${HOME}/.config/corebird | ||
139 | blacklist ${HOME}/.config/darktable | ||
140 | blacklist ${HOME}/.config/deadbeef | ||
141 | blacklist ${HOME}/.config/deluge | ||
142 | blacklist ${HOME}/.config/devilspie2 | ||
143 | blacklist ${HOME}/.config/digikam | ||
144 | blacklist ${HOME}/.config/digikamrc | ||
145 | blacklist ${HOME}/.config/discord | ||
146 | blacklist ${HOME}/.config/discordcanary | ||
147 | blacklist ${HOME}/.config/dnox | ||
148 | blacklist ${HOME}/.config/dolphinrc | ||
149 | blacklist ${HOME}/.config/dragonplayerrc | ||
150 | blacklist ${HOME}/.config/d-feet | ||
151 | blacklist ${HOME}/.config/emaildefaults | ||
152 | blacklist ${HOME}/.config/emailidentities | ||
153 | blacklist ${HOME}/.config/enchant | ||
154 | blacklist ${HOME}/.config/eog | ||
155 | blacklist ${HOME}/.config/epiphany | ||
156 | blacklist ${HOME}/.config/evince | ||
157 | blacklist ${HOME}/.config/evolution | ||
158 | blacklist ${HOME}/.config/falkon | ||
159 | blacklist ${HOME}/.config/filezilla | ||
160 | blacklist ${HOME}/.config/flowblade | ||
161 | blacklist ${HOME}/.config/font-manager | ||
162 | blacklist ${HOME}/.config/freecol | ||
163 | blacklist ${HOME}/.config/gajim | ||
164 | blacklist ${HOME}/.config/galculator | ||
165 | blacklist ${HOME}/.config/gconf | ||
166 | blacklist ${HOME}/.config/geany | ||
167 | blacklist ${HOME}/.config/gedit | ||
168 | blacklist ${HOME}/.config/geeqie | ||
169 | blacklist ${HOME}/.config/ghb | ||
170 | blacklist ${HOME}/.config/ghostwriter | ||
171 | blacklist ${HOME}/.config/git | ||
172 | blacklist ${HOME}/.config/globaltime | ||
173 | blacklist ${HOME}/.config/gnome-mplayer | ||
174 | blacklist ${HOME}/.config/gnome-mpv | ||
175 | blacklist ${HOME}/.config/gnome-pie | ||
176 | blacklist ${HOME}/.config/google-chrome | ||
177 | blacklist ${HOME}/.config/google-chrome-beta | ||
178 | blacklist ${HOME}/.config/google-chrome-unstable | ||
179 | blacklist ${HOME}/.config/gpicview | ||
180 | blacklist ${HOME}/.config/gthumb | ||
181 | blacklist ${HOME}/.config/gwenviewrc | ||
182 | blacklist ${HOME}/.config/hexchat | ||
183 | blacklist ${HOME}/.config/inkscape | ||
184 | blacklist ${HOME}/.config/inox | ||
185 | blacklist ${HOME}/.config/iridium | ||
186 | blacklist ${HOME}/.config/itch | ||
187 | blacklist ${HOME}/.config/jd-gui.cfg | ||
188 | blacklist ${HOME}/.config/k3brc | ||
189 | blacklist ${HOME}/.config/kaffeinerc | ||
190 | blacklist ${HOME}/.config/katemetainfos | ||
191 | blacklist ${HOME}/.config/katepartrc | ||
192 | blacklist ${HOME}/.config/katerc | ||
193 | blacklist ${HOME}/.config/kateschemarc | ||
194 | blacklist ${HOME}/.config/katesyntaxhighlightingrc | ||
195 | blacklist ${HOME}/.config/katevirc | ||
196 | blacklist ${HOME}/.config/kdenliverc | ||
197 | blacklist ${HOME}/.config/kgetrc | ||
198 | blacklist ${HOME}/.config/kid3rc | ||
199 | blacklist ${HOME}/.config/klavaro | ||
200 | blacklist ${HOME}/.config/klipperrc | ||
201 | blacklist ${HOME}/.config/kmail2rc | ||
202 | blacklist ${HOME}/.config/kmailsearchindexingrc | ||
203 | blacklist ${HOME}/.config/kritarc | ||
204 | blacklist ${HOME}/.config/kwriterc | ||
205 | blacklist ${HOME}/.config/kdeconnect | ||
206 | blacklist ${HOME}/.config/knotesrc | ||
207 | blacklist ${HOME}/.config/konversationrc | ||
208 | blacklist ${HOME}/.config/ktorrentrc | ||
209 | blacklist ${HOME}/.config/leafpad | ||
210 | blacklist ${HOME}/.config/libreoffice | ||
211 | blacklist ${HOME}/.config/liferea | ||
212 | blacklist ${HOME}/.config/lugaru | ||
213 | blacklist ${HOME}/.config/lximage-qt | ||
214 | blacklist ${HOME}/.config/mailtransports | ||
215 | blacklist ${HOME}/.config/mana | ||
216 | blacklist ${HOME}/.config/mate-calc | ||
217 | blacklist ${HOME}/.config/mate/eom | ||
218 | blacklist ${HOME}/.config/mate/mate-dictionary | ||
219 | blacklist ${HOME}/.config/mfusion | ||
220 | blacklist ${HOME}/.config/midori | ||
221 | blacklist ${HOME}/.config/mono | ||
222 | blacklist ${HOME}/.config/mpd | ||
223 | blacklist ${HOME}/.config/mpDris2 | ||
224 | blacklist ${HOME}/.config/mps-youtube | ||
225 | blacklist ${HOME}/.config/mpv | ||
226 | blacklist ${HOME}/.config/mupen64plus | ||
227 | blacklist ${HOME}/.config/mypaint | ||
228 | blacklist ${HOME}/.config/nano | ||
229 | blacklist ${HOME}/.config/nautilus | ||
230 | blacklist ${HOME}/.config/nemo | ||
231 | blacklist ${HOME}/.config/netsurf | ||
232 | blacklist ${HOME}/.config/nheko | ||
233 | blacklist ${HOME}/.config/NitroShare | ||
234 | blacklist ${HOME}/.config/nomacs | ||
235 | blacklist ${HOME}/.config/obs-studio | ||
236 | blacklist ${HOME}/.config/okularpartrc | ||
237 | blacklist ${HOME}/.config/okularrc | ||
238 | blacklist ${HOME}/.config/onionshare | ||
239 | blacklist ${HOME}/.config/opera | ||
240 | blacklist ${HOME}/.config/opera-beta | ||
241 | blacklist ${HOME}/.config/orage | ||
242 | blacklist ${HOME}/.config/org.kde.gwenviewrc | ||
243 | blacklist ${HOME}/.config/pavucontrol.ini | ||
244 | blacklist ${HOME}/.config/pcmanfm | ||
245 | blacklist ${HOME}/.config/pdfmod | ||
246 | blacklist ${HOME}/.config/Pinta | ||
247 | blacklist ${HOME}/.config/pitivi | ||
248 | blacklist ${HOME}/.config/pix | ||
249 | blacklist ${HOME}/.config/pluma | ||
250 | blacklist ${HOME}/.config/ppsspp | ||
251 | blacklist ${HOME}/.config/pragha | ||
252 | blacklist ${HOME}/.config/psi+ | ||
253 | blacklist ${HOME}/.config/qBittorrent | ||
254 | blacklist ${HOME}/.config/qBittorrentrc | ||
255 | blacklist ${HOME}/.config/qpdfview | ||
256 | blacklist ${HOME}/.config/qupzilla | ||
257 | blacklist ${HOME}/.config/qutebrowser | ||
258 | blacklist ${HOME}/.config/ranger | ||
259 | blacklist ${HOME}/.config/redshift | ||
260 | blacklist ${HOME}/.config/redshift.conf | ||
261 | blacklist ${HOME}/.config/remmina | ||
262 | blacklist ${HOME}/.config/ristretto | ||
263 | blacklist ${HOME}/.config/scribus | ||
264 | blacklist ${HOME}/.config/skypeforlinux | ||
265 | blacklist ${HOME}/.config/slimjet | ||
266 | blacklist ${HOME}/.config/smplayer | ||
267 | blacklist ${HOME}/.config/smtube | ||
268 | blacklist ${HOME}/.config/snox | ||
269 | blacklist ${HOME}/.config/specialmailcollectionsrc | ||
270 | blacklist ${HOME}/.config/spotify | ||
271 | blacklist ${HOME}/.config/supertuxkart | ||
272 | blacklist ${HOME}/.config/sqlitebrowser | ||
273 | blacklist ${HOME}/.config/stellarium | ||
274 | blacklist ${HOME}/.config/synfig | ||
275 | blacklist ${HOME}/.config/telepathy-account-widgets | ||
276 | blacklist ${HOME}/.config/torbrowser | ||
277 | blacklist ${HOME}/.config/totem | ||
278 | blacklist ${HOME}/.config/tox | ||
279 | blacklist ${HOME}/.config/transgui | ||
280 | blacklist ${HOME}/.config/truecraft | ||
281 | blacklist ${HOME}/.config/transmission | ||
282 | blacklist ${HOME}/.config/uGet | ||
283 | blacklist ${HOME}/.config/uzbl | ||
284 | blacklist ${HOME}/.config/viewnior | ||
285 | blacklist ${HOME}/.config/vivaldi | ||
286 | blacklist ${HOME}/.config/vivaldi-snapshot | ||
287 | blacklist ${HOME}/.config/vlc | ||
288 | blacklist ${HOME}/.config/wesnoth | ||
289 | blacklist ${HOME}/.config/wireshark | ||
290 | blacklist ${HOME}/.config/xchat | ||
291 | blacklist ${HOME}/.config/xed | ||
292 | blacklist ${HOME}/.config/xfburn | ||
293 | blacklist ${HOME}/.config/xfce4/xfce4-notes.gtkrc | ||
294 | blacklist ${HOME}/.config/xfce4/xfce4-notes.rc | ||
295 | blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml | ||
296 | blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-mixer.xml | ||
297 | blacklist ${HOME}/.config/xfce4-dict | ||
298 | blacklist ${HOME}/.config/xiaoyong | ||
299 | blacklist ${HOME}/.config/xmms2 | ||
300 | blacklist ${HOME}/.config/xplayer | ||
301 | blacklist ${HOME}/.config/xreader | ||
302 | blacklist ${HOME}/.config/xviewer | ||
303 | blacklist ${HOME}/.config/yandex-browser | ||
304 | blacklist ${HOME}/.config/yandex-browser-beta | ||
305 | blacklist ${HOME}/.config/zathura | ||
306 | blacklist ${HOME}/.config/zoomus.conf | ||
307 | blacklist ${HOME}/.conkeror.mozdev.org | ||
308 | blacklist ${HOME}/.crawl | ||
309 | blacklist ${HOME}/.curlrc | ||
310 | blacklist ${HOME}/.dashcore | ||
311 | blacklist ${HOME}/.devilspie | ||
312 | blacklist ${HOME}/.dia | ||
313 | blacklist ${HOME}/.digrc | ||
314 | blacklist ${HOME}/.dillo | ||
315 | blacklist ${HOME}/.dooble | ||
316 | blacklist ${HOME}/.dosbox | ||
317 | blacklist ${HOME}/.dropbox* | ||
318 | blacklist ${HOME}/.easystroke | ||
319 | blacklist ${HOME}/.electron-cache | ||
320 | blacklist ${HOME}/.electrum* | ||
321 | blacklist ${HOME}/.elinks | ||
322 | blacklist ${HOME}/.emacs | ||
323 | blacklist ${HOME}/.emacs | ||
324 | blacklist ${HOME}/.emacs.d | ||
325 | blacklist ${HOME}/.ethereum | ||
326 | blacklist ${HOME}/.etr | ||
327 | blacklist ${HOME}/.filezilla | ||
328 | blacklist ${HOME}/.flowblade | ||
329 | blacklist ${HOME}/.fltk | ||
330 | blacklist ${HOME}/.fossamail | ||
331 | blacklist ${HOME}/.freeciv | ||
332 | blacklist ${HOME}/.freecol | ||
333 | blacklist ${HOME}/.freemind | ||
334 | blacklist ${HOME}/.frozen-bubble | ||
335 | blacklist ${HOME}/.gimp* | ||
336 | blacklist ${HOME}/.git-credentials | ||
337 | blacklist ${HOME}/.git-credential-cache | ||
338 | blacklist ${HOME}/.gitconfig | ||
339 | blacklist ${HOME}/.gnome/gnome-schedule | ||
340 | blacklist ${HOME}/.googleearth/Cache/ | ||
341 | blacklist ${HOME}/.googleearth/Temp/ | ||
342 | blacklist ${HOME}/.googleearth/myplaces.backup.kml | ||
343 | blacklist ${HOME}/.googleearth/myplaces.kml | ||
344 | blacklist ${HOME}/.gradle | ||
345 | blacklist ${HOME}/.gramps | ||
346 | blacklist ${HOME}/.guayadeque | ||
347 | blacklist ${HOME}/.hashcat | ||
348 | blacklist ${HOME}/.hedgewars | ||
349 | blacklist ${HOME}/.hugin | ||
350 | blacklist ${HOME}/.icedove | ||
351 | blacklist ${HOME}/.imagej | ||
352 | blacklist ${HOME}/.inkscape | ||
353 | blacklist ${HOME}/.jack-server | ||
354 | blacklist ${HOME}/.jack-settings | ||
355 | blacklist ${HOME}/.jak | ||
356 | blacklist ${HOME}/.java | ||
357 | blacklist ${HOME}/.jd | ||
358 | blacklist ${HOME}/.jitsi | ||
359 | blacklist ${HOME}/.kde/share/apps/digikam | ||
360 | blacklist ${HOME}/.kde/share/apps/gwenview | ||
361 | blacklist ${HOME}/.kde/share/apps/kaffeine | ||
362 | blacklist ${HOME}/.kde/share/apps/kcookiejar | ||
363 | blacklist ${HOME}/.kde/share/apps/kget | ||
364 | blacklist ${HOME}/.kde/share/apps/khtml | ||
365 | blacklist ${HOME}/.kde/share/apps/konqsidebartng | ||
366 | blacklist ${HOME}/.kde/share/apps/konqueror | ||
367 | blacklist ${HOME}/.kde/share/apps/kopete | ||
368 | blacklist ${HOME}/.kde/share/apps/khtml | ||
369 | blacklist ${HOME}/.kde/share/apps/ktorrent | ||
370 | blacklist ${HOME}/.kde/share/apps/okular | ||
371 | blacklist ${HOME}/.kde/share/config/baloofilerc | ||
372 | blacklist ${HOME}/.kde/share/config/baloorc | ||
373 | blacklist ${HOME}/.kde/share/config/digikam | ||
374 | blacklist ${HOME}/.kde/share/config/gwenviewrc | ||
375 | blacklist ${HOME}/.kde/share/config/k3brc | ||
376 | blacklist ${HOME}/.kde/share/config/kaffeinerc | ||
377 | blacklist ${HOME}/.kde/share/config/kcookiejarrc | ||
378 | blacklist ${HOME}/.kde/share/config/kgetrc | ||
379 | blacklist ${HOME}/.kde/share/config/khtmlrc | ||
380 | blacklist ${HOME}/.kde/share/config/klipperrc | ||
381 | blacklist ${HOME}/.kde/share/config/konq_history | ||
382 | blacklist ${HOME}/.kde/share/config/konqsidebartngrc | ||
383 | blacklist ${HOME}/.kde/share/config/konquerorrc | ||
384 | blacklist ${HOME}/.kde/share/config/konversationrc | ||
385 | blacklist ${HOME}/.kde/share/config/kopeterc | ||
386 | blacklist ${HOME}/.kde/share/config/ktorrentrc | ||
387 | blacklist ${HOME}/.kde/share/config/okularpartrc | ||
388 | blacklist ${HOME}/.kde/share/config/okularrc | ||
389 | blacklist ${HOME}/.kde4/share/apps/digikam | ||
390 | blacklist ${HOME}/.kde4/share/apps/gwenview | ||
391 | blacklist ${HOME}/.kde4/share/apps/kaffeine | ||
392 | blacklist ${HOME}/.kde4/share/apps/kcookiejar | ||
393 | blacklist ${HOME}/.kde4/share/apps/kget | ||
394 | blacklist ${HOME}/.kde4/share/apps/khtml | ||
395 | blacklist ${HOME}/.kde4/share/apps/konqueror | ||
396 | blacklist ${HOME}/.kde4/share/apps/konqsidebartng | ||
397 | blacklist ${HOME}/.kde4/share/apps/kopete | ||
398 | blacklist ${HOME}/.kde4/share/apps/ktorrent | ||
399 | blacklist ${HOME}/.kde4/share/apps/okular | ||
400 | blacklist ${HOME}/.kde4/share/config/baloorc | ||
401 | blacklist ${HOME}/.kde4/share/config/baloofilerc | ||
402 | blacklist ${HOME}/.kde4/share/config/digikam | ||
403 | blacklist ${HOME}/.kde4/share/config/gwenviewrc | ||
404 | blacklist ${HOME}/.kde4/share/config/k3brc | ||
405 | blacklist ${HOME}/.kde4/share/config/kaffeinerc | ||
406 | blacklist ${HOME}/.kde4/share/config/kcookiejarrc | ||
407 | blacklist ${HOME}/.kde4/share/config/kgetrc | ||
408 | blacklist ${HOME}/.kde4/share/config/khtmlrc | ||
409 | blacklist ${HOME}/.kde4/share/config/klipperrc | ||
410 | blacklist ${HOME}/.kde4/share/config/konq_history | ||
411 | blacklist ${HOME}/.kde4/share/config/konqsidebartngrc | ||
412 | blacklist ${HOME}/.kde4/share/config/konquerorrc | ||
413 | blacklist ${HOME}/.kde4/share/config/konversationrc | ||
414 | blacklist ${HOME}/.kde4/share/config/kopeterc | ||
415 | blacklist ${HOME}/.kde4/share/config/ktorrentrc | ||
416 | blacklist ${HOME}/.kde4/share/config/okularpartrc | ||
417 | blacklist ${HOME}/.kde4/share/config/okularrc | ||
418 | blacklist ${HOME}/.killingfloor | ||
419 | blacklist ${HOME}/.kino-history | ||
420 | blacklist ${HOME}/.kinorc | ||
421 | blacklist ${HOME}/.kodi | ||
422 | blacklist ${HOME}/.lincity-ng | ||
423 | blacklist ${HOME}/.linphone-history.db | ||
424 | blacklist ${HOME}/.linphonerc | ||
425 | blacklist ${HOME}/.lmmsrc.xml | ||
426 | blacklist ${HOME}/.local/lib/vivaldi | ||
427 | blacklist ${HOME}/.local/share/0ad | ||
428 | blacklist ${HOME}/.local/share/3909/PapersPlease | ||
429 | blacklist ${HOME}/.local/share/Anki2 | ||
430 | blacklist ${HOME}/.local/share/Empathy | ||
431 | blacklist ${HOME}/.local/share/JetBrains | ||
432 | blacklist ${HOME}/.local/share/Mendeley Ltd. | ||
433 | blacklist ${HOME}/.local/share/Mumble | ||
434 | blacklist ${HOME}/.local/share/PBE | ||
435 | blacklist ${HOME}/.local/share/QMediathekView | ||
436 | blacklist ${HOME}/.local/share/QuiteRss | ||
437 | blacklist ${HOME}/.local/share/Ricochet | ||
438 | blacklist ${HOME}/.local/share/Steam | ||
439 | blacklist ${HOME}/.local/share/SuperHexagon | ||
440 | blacklist ${HOME}/.local/share/TelegramDesktop | ||
441 | blacklist ${HOME}/.local/share/Terraria | ||
442 | blacklist ${HOME}/.local/share/TpLogger | ||
443 | blacklist ${HOME}/.local/share/akonadi* | ||
444 | blacklist ${HOME}/.local/share/akregator | ||
445 | blacklist ${HOME}/.local/share/apps/korganizer | ||
446 | blacklist ${HOME}/.local/share/aspyr-media | ||
447 | blacklist ${HOME}/.local/share/baloo | ||
448 | blacklist ${HOME}/.local/share/bibletime | ||
449 | blacklist ${HOME}/.local/share/caja-python | ||
450 | blacklist ${HOME}/.local/share/cdprojektred | ||
451 | blacklist ${HOME}/.local/share/clipit | ||
452 | blacklist ${HOME}/.local/share/contacts | ||
453 | blacklist ${HOME}/.local/share/data/Mendeley Ltd. | ||
454 | blacklist ${HOME}/.local/share/data/Mumble | ||
455 | blacklist ${HOME}/.local/share/data/MusE | ||
456 | blacklist ${HOME}/.local/share/data/MuseScore | ||
457 | blacklist ${HOME}/.local/share/data/nomacs | ||
458 | blacklist ${HOME}/.local/share/data/qBittorrent | ||
459 | blacklist ${HOME}/.local/share/dino | ||
460 | blacklist ${HOME}/.local/share/dolphin | ||
461 | blacklist ${HOME}/.local/share/emailidentities | ||
462 | blacklist ${HOME}/.local/share/epiphany | ||
463 | blacklist ${HOME}/.local/share/evolution | ||
464 | blacklist ${HOME}/.local/share/feedreader | ||
465 | blacklist ${HOME}/.local/share/feral-interactive | ||
466 | blacklist ${HOME}/.local/share/freecol | ||
467 | blacklist ${HOME}/.local/share/gajim | ||
468 | blacklist ${HOME}/.local/share/geary | ||
469 | blacklist ${HOME}/.local/share/geeqie | ||
470 | blacklist ${HOME}/.local/share/gitg | ||
471 | blacklist ${HOME}/.local/share/gnome-2048 | ||
472 | blacklist ${HOME}/.local/share/gnome-chess | ||
473 | blacklist ${HOME}/.local/share/gnome-music | ||
474 | blacklist ${HOME}/.local/share/gnome-photos | ||
475 | blacklist ${HOME}/.local/share/gnome-recipes | ||
476 | blacklist ${HOME}/.local/share/gnome-ring | ||
477 | blacklist ${HOME}/.local/share/gnome-twitch | ||
478 | blacklist ${HOME}/.local/share/gradio | ||
479 | blacklist ${HOME}/.local/share/gwenview | ||
480 | blacklist ${HOME}/.local/share/kaffeine | ||
481 | blacklist ${HOME}/.local/share/kate | ||
482 | blacklist ${HOME}/.local/share/kdenlive | ||
483 | blacklist ${HOME}/.local/share/kget | ||
484 | blacklist ${HOME}/.local/share/klavaro | ||
485 | blacklist ${HOME}/.local/share/kmail2 | ||
486 | blacklist ${HOME}/.local/share/knotes | ||
487 | blacklist ${HOME}/.local/share/krita | ||
488 | blacklist ${HOME}/.local/share/ktorrentrc | ||
489 | blacklist ${HOME}/.local/share/ktorrent | ||
490 | blacklist ${HOME}/.local/share/kwrite | ||
491 | blacklist ${HOME}/.local/share/liferea | ||
492 | blacklist ${HOME}/.local/share/local-mail | ||
493 | blacklist ${HOME}/.local/share/lollypop | ||
494 | blacklist ${HOME}/.local/share/lugaru | ||
495 | blacklist ${HOME}/.local/share/mana | ||
496 | blacklist ${HOME}/.local/share/maps-places.json | ||
497 | blacklist ${HOME}/.local/share/meld | ||
498 | blacklist ${HOME}/.local/share/midori | ||
499 | blacklist ${HOME}/.local/share/multimc | ||
500 | blacklist ${HOME}/.local/share/multimc5 | ||
501 | blacklist ${HOME}/.local/share/mupen64plus | ||
502 | blacklist ${HOME}/.local/share/mypaint | ||
503 | blacklist ${HOME}/.local/share/nautilus | ||
504 | blacklist ${HOME}/.local/share/nautilus-python | ||
505 | blacklist ${HOME}/.local/share/nemo | ||
506 | blacklist ${HOME}/.local/share/nemo-python | ||
507 | blacklist ${HOME}/.local/share/nomacs | ||
508 | blacklist ${HOME}/.local/share/notes | ||
509 | blacklist ${HOME}/.local/share/ocenaudio | ||
510 | blacklist ${HOME}/.local/share/okular | ||
511 | blacklist ${HOME}/.local/share/orage | ||
512 | blacklist ${HOME}/.local/share/org.kde.gwenview | ||
513 | blacklist ${HOME}/.local/share/rhythmbox | ||
514 | blacklist ${HOME}/.local/share/pix | ||
515 | blacklist ${HOME}/.local/share/plasma_notes | ||
516 | blacklist ${HOME}/.local/share/psi+ | ||
517 | blacklist ${HOME}/.local/share/qpdfview | ||
518 | blacklist ${HOME}/.local/share/qutebrowser | ||
519 | blacklist ${HOME}/.local/share/remmina | ||
520 | blacklist ${HOME}/.local/share/scribus | ||
521 | blacklist ${HOME}/.local/share/spotify | ||
522 | blacklist ${HOME}/.local/share/steam | ||
523 | blacklist ${HOME}/.local/share/supertux2 | ||
524 | blacklist ${HOME}/.local/share/supertuxkart | ||
525 | blacklist ${HOME}/.local/share/telepathy | ||
526 | blacklist ${HOME}/.local/share/terasology | ||
527 | blacklist ${HOME}/.local/share/torbrowser | ||
528 | blacklist ${HOME}/.local/share/totem | ||
529 | blacklist ${HOME}/.local/share/uzbl | ||
530 | blacklist ${HOME}/.local/share/vlc | ||
531 | blacklist ${HOME}/.local/share/vpltd | ||
532 | blacklist ${HOME}/.local/share/vulkan | ||
533 | blacklist ${HOME}/.local/share/warsow-2.1 | ||
534 | blacklist ${HOME}/.local/share/wesnoth | ||
535 | blacklist ${HOME}/.local/share/xplayer | ||
536 | blacklist ${HOME}/.local/share/xreader | ||
537 | blacklist ${HOME}/.local/share/zathura | ||
538 | blacklist ${HOME}/.lv2 | ||
539 | blacklist ${HOME}/.masterpdfeditor | ||
540 | blacklist ${HOME}/.mcabber | ||
541 | blacklist ${HOME}/.mcabberrc | ||
542 | blacklist ${HOME}/.mediathek3 | ||
543 | blacklist ${HOME}/.megaglest | ||
544 | blacklist ${HOME}/.minetest | ||
545 | blacklist ${HOME}/.moonchild productions/basilisk | ||
546 | blacklist ${HOME}/.moonchild productions/pale moon | ||
547 | blacklist ${HOME}/.mozilla | ||
548 | blacklist ${HOME}/.mpd | ||
549 | blacklist ${HOME}/.mpdconf | ||
550 | blacklist ${HOME}/.mplayer | ||
551 | blacklist ${HOME}/.msmtprc | ||
552 | blacklist ${HOME}/.multimc5 | ||
553 | blacklist ${HOME}/.nanorc | ||
554 | blacklist ${HOME}/.netactview | ||
555 | blacklist ${HOME}/.neverball | ||
556 | blacklist ${HOME}/.newsboat | ||
557 | blacklist ${HOME}/.nv | ||
558 | blacklist ${HOME}/.nylas-mail | ||
559 | blacklist ${HOME}/.opencity | ||
560 | blacklist ${HOME}/.openinvaders | ||
561 | blacklist ${HOME}/.openshot | ||
562 | blacklist ${HOME}/.openshot_qt | ||
563 | blacklist ${HOME}/.openttd | ||
564 | blacklist ${HOME}/.opera | ||
565 | blacklist ${HOME}/.opera-beta | ||
566 | blacklist ${HOME}/.ostrichriders | ||
567 | blacklist ${HOME}/.pingus | ||
568 | blacklist ${HOME}/.pioneer | ||
569 | blacklist ${HOME}/.purple | ||
570 | blacklist ${HOME}/.qemu-launcher | ||
571 | blacklist ${HOME}/.qmmp | ||
572 | blacklist ${HOME}/.quodlibet | ||
573 | blacklist ${HOME}/.redeclipse | ||
574 | blacklist ${HOME}/.remmina | ||
575 | blacklist ${HOME}/.repo_.gitconfig.json | ||
576 | blacklist ${HOME}/.repoconfig | ||
577 | blacklist ${HOME}/.retroshare | ||
578 | blacklist ${HOME}/.scorched3d | ||
579 | blacklist ${HOME}/.scribus | ||
580 | blacklist ${HOME}/.scribusrc | ||
581 | blacklist ${HOME}/.simutrans | ||
582 | blacklist ${HOME}/.smartgit/*/passwords | ||
583 | blacklist ${HOME}/.steam | ||
584 | blacklist ${HOME}/.steampath | ||
585 | blacklist ${HOME}/.steampid | ||
586 | blacklist ${HOME}/.stellarium | ||
587 | blacklist ${HOME}/.subversion | ||
588 | blacklist ${HOME}/.surf | ||
589 | blacklist ${HOME}/.sword | ||
590 | blacklist ${HOME}/.sylpheed-2.0 | ||
591 | blacklist ${HOME}/.synfig | ||
592 | blacklist ${HOME}/.tconn | ||
593 | blacklist ${HOME}/.teeworlds | ||
594 | blacklist ${HOME}/.thunderbird | ||
595 | blacklist ${HOME}/.tilp | ||
596 | blacklist ${HOME}/.tooling | ||
597 | blacklist ${HOME}/.tor-browser-* | ||
598 | blacklist ${HOME}/.tor-browser_* | ||
599 | blacklist ${HOME}/.torcs | ||
600 | blacklist ${HOME}/.tremulous | ||
601 | blacklist ${HOME}/.ts3client | ||
602 | blacklist ${HOME}/.tuxguitar* | ||
603 | blacklist ${HOME}/.unknown-horizons | ||
604 | blacklist ${HOME}/.viking | ||
605 | blacklist ${HOME}/.viking-maps | ||
606 | blacklist ${HOME}/.vscode | ||
607 | blacklist ${HOME}/.vscode-oss | ||
608 | blacklist ${HOME}/.vst | ||
609 | blacklist ${HOME}/.vultures | ||
610 | blacklist ${HOME}/.w3m | ||
611 | blacklist ${HOME}/.warzone2100-3.* | ||
612 | blacklist ${HOME}/.waterfox | ||
613 | blacklist ${HOME}/.weechat | ||
614 | blacklist ${HOME}/.wget-hsts | ||
615 | blacklist ${HOME}/.wgetrc | ||
616 | blacklist ${HOME}/.widelands | ||
617 | blacklist ${HOME}/.wine | ||
618 | blacklist ${HOME}/.wireshark | ||
619 | blacklist ${HOME}/.wine64 | ||
620 | blacklist ${HOME}/.xiphos | ||
621 | blacklist ${HOME}/.xmind | ||
622 | blacklist ${HOME}/.xmms | ||
623 | blacklist ${HOME}/.xmr-stak | ||
624 | blacklist ${HOME}/.xonotic | ||
625 | blacklist ${HOME}/.xpdfrc | ||
626 | blacklist ${HOME}/.zoom | ||
627 | blacklist /tmp/akonadi-* | ||
628 | blacklist /tmp/ssh-* | ||
629 | |||
630 | # ${HOME}/.cache directory | ||
631 | blacklist ${HOME}/.cache/0ad | ||
632 | blacklist ${HOME}/.cache/8pecxstudios | ||
633 | blacklist ${HOME}/.cache/Authenticator | ||
634 | blacklist ${HOME}/.cache/Clementine | ||
635 | blacklist ${HOME}/.cache/Enox | ||
636 | blacklist ${HOME}/.cache/Franz | ||
637 | blacklist ${HOME}/.cache/INRIA | ||
638 | blacklist ${HOME}/.cache/MusicBrainz | ||
639 | blacklist ${HOME}/.cache/QuiteRss | ||
640 | blacklist ${HOME}/.cache/akonadi* | ||
641 | blacklist ${HOME}/.cache/atril | ||
642 | blacklist ${HOME}/.cache/attic | ||
643 | blacklist ${HOME}/.cache/bnox | ||
644 | blacklist ${HOME}/.cache/borg | ||
645 | blacklist ${HOME}/.cache/calibre | ||
646 | blacklist ${HOME}/.cache/champlain | ||
647 | blacklist ${HOME}/.cache/chromium | ||
648 | blacklist ${HOME}/.cache/chromium-dev | ||
649 | blacklist ${HOME}/.cache/cliqz | ||
650 | blacklist ${HOME}/.cache/darktable | ||
651 | blacklist ${HOME}/.cache/discover | ||
652 | blacklist ${HOME}/.cache/dnox | ||
653 | blacklist ${HOME}/.cache/dolphin | ||
654 | blacklist ${HOME}/.cache/epiphany | ||
655 | blacklist ${HOME}/.cache/evolution | ||
656 | blacklist ${HOME}/.cache/falkon | ||
657 | blacklist ${HOME}/.cache/feedreader | ||
658 | blacklist ${HOME}/.cache/font-manager | ||
659 | blacklist ${HOME}/.cache/fossamail | ||
660 | blacklist ${HOME}/.cache/freecol | ||
661 | blacklist ${HOME}/.cache/gajim | ||
662 | blacklist ${HOME}/.cache/geeqie | ||
663 | blacklist ${HOME}/.cache/google-chrome | ||
664 | blacklist ${HOME}/.cache/google-chrome-beta | ||
665 | blacklist ${HOME}/.cache/google-chrome-unstable | ||
666 | blacklist ${HOME}/.cache/gnome-recipes | ||
667 | blacklist ${HOME}/.cache/gnome-twitch | ||
668 | blacklist ${HOME}/.cache/gradio | ||
669 | blacklist ${HOME}/.cache/icedove | ||
670 | blacklist ${HOME}/.cache/INRIA/Natron | ||
671 | blacklist ${HOME}/.cache/inkscape | ||
672 | blacklist ${HOME}/.cache/inox | ||
673 | blacklist ${HOME}/.cache/iridium | ||
674 | blacklist ${HOME}/.cache/kdenlive | ||
675 | blacklist ${HOME}/.cache/kinfocenter | ||
676 | blacklist ${HOME}/.cache/kmail2 | ||
677 | blacklist ${HOME}/.cache/krunner | ||
678 | blacklist ${HOME}/.cache/krunnerbookmarkrunnerfirefoxdbfile.sqlite* | ||
679 | blacklist ${HOME}/.cache/kscreenlocker_greet | ||
680 | blacklist ${HOME}/.cache/ksmserver-logout-greeter | ||
681 | blacklist ${HOME}/.cache/ksplashqml | ||
682 | blacklist ${HOME}/.cache/kwin | ||
683 | blacklist ${HOME}/.cache/libgweather | ||
684 | blacklist ${HOME}/.cache/liferea | ||
685 | blacklist ${HOME}/.cache/Mendeley Ltd. | ||
686 | blacklist ${HOME}/.cache/midori | ||
687 | blacklist ${HOME}/.cache/moonchild productions/basilisk | ||
688 | blacklist ${HOME}/.cache/moonchild productions/pale moon | ||
689 | blacklist ${HOME}/.cache/mozilla | ||
690 | blacklist ${HOME}/.cache/ms-excel-online | ||
691 | blacklist ${HOME}/.cache/ms-office-online | ||
692 | blacklist ${HOME}/.cache/ms-onenote-online | ||
693 | blacklist ${HOME}/.cache/ms-outlook-online | ||
694 | blacklist ${HOME}/.cache/ms-powerpoint-online | ||
695 | blacklist ${HOME}/.cache/ms-skype-online | ||
696 | blacklist ${HOME}/.cache/ms-word-online | ||
697 | blacklist ${HOME}/.cache/mutt | ||
698 | blacklist ${HOME}/.cache/mypaint | ||
699 | blacklist ${HOME}/.cache/nheko/nheko | ||
700 | blacklist ${HOME}/.cache/netsurf | ||
701 | blacklist ${HOME}/.cache/okular | ||
702 | blacklist ${HOME}/.cache/opera | ||
703 | blacklist ${HOME}/.cache/opera-beta | ||
704 | blacklist ${HOME}/.cache/org.gnome.Books | ||
705 | blacklist ${HOME}/.cache/pdfmod | ||
706 | blacklist ${HOME}/.cache/peek | ||
707 | blacklist ${HOME}/.cache/plasmashell | ||
708 | blacklist ${HOME}/.cache/plasmashellbookmarkrunnerfirefoxdbfile.sqlite* | ||
709 | blacklist ${HOME}/.cache/qBittorrent | ||
710 | blacklist ${HOME}/.cache/qupzilla | ||
711 | blacklist ${HOME}/.cache/qutebrowser | ||
712 | blacklist ${HOME}/.cache/simple-scan | ||
713 | blacklist ${HOME}/.cache/slimjet | ||
714 | blacklist ${HOME}/.cache/snox | ||
715 | blacklist ${HOME}/.cache/spotify | ||
716 | blacklist ${HOME}/.cache/supertuxkart | ||
717 | blacklist ${HOME}/.cache/systemsettings | ||
718 | blacklist ${HOME}/.cache/telepathy | ||
719 | blacklist ${HOME}/.cache/thunderbird | ||
720 | blacklist ${HOME}/.cache/torbrowser | ||
721 | blacklist ${HOME}/.cache/transmission | ||
722 | blacklist ${HOME}/.cache/vivaldi | ||
723 | blacklist ${HOME}/.cache/vivaldi-snapshot | ||
724 | blacklist ${HOME}/.cache/vlc | ||
725 | blacklist ${HOME}/.cache/warsow-2.1 | ||
726 | blacklist ${HOME}/.cache/waterfox | ||
727 | blacklist ${HOME}/.cache/wesnoth | ||
728 | blacklist ${HOME}/.cache/xmms2 | ||
729 | blacklist ${HOME}/.cache/xreader | ||
730 | blacklist ${HOME}/.cache/yandex-browser | ||
731 | blacklist ${HOME}/.cache/yandex-browser-beta | ||
732 | |||
733 | blacklist /var/games/nethack | ||
734 | blacklist /var/games/slashem | ||
735 | blacklist /var/games/vulturesclaw | ||
736 | blacklist /var/games/vultureseye | ||
737 | blacklist /var/lib/games/Maelstrom-Scores | ||
diff --git a/etc/geany.profile b/etc/geany.profile index b9c0da12e..5547477fc 100644 --- a/etc/geany.profile +++ b/etc/geany.profile | |||
@@ -1,37 +1 @@ | |||
1 | # Firejail profile for geany | ]0;firejail /usr/bin/meld ./etc/geany_LOCAL_29017.profile ./etc/geany_BASE_29017.profile ./etc/geany_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: Fast and lightweight IDE | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include geany.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.config/geany | ||
10 | noblacklist ${HOME}/.config/git | ||
11 | noblacklist ${HOME}/.gitconfig | ||
12 | noblacklist ${HOME}/.git-credentials | ||
13 | noblacklist ${HOME}/.python-history | ||
14 | noblacklist ${HOME}/.pythonrc.py | ||
15 | |||
16 | include disable-common.inc | ||
17 | include disable-passwdmgr.inc | ||
18 | include disable-programs.inc | ||
19 | |||
20 | caps.drop all | ||
21 | netfilter | ||
22 | no3d | ||
23 | nodvd | ||
24 | nogroups | ||
25 | nonewprivs | ||
26 | noroot | ||
27 | nosound | ||
28 | notv | ||
29 | nou2f | ||
30 | novideo | ||
31 | protocol unix,inet,inet6 | ||
32 | seccomp | ||
33 | shell none | ||
34 | |||
35 | private-cache | ||
36 | private-dev | ||
37 | private-tmp | ||
diff --git a/etc/gedit.profile b/etc/gedit.profile index ca2cf6e92..f1e78ca95 100644 --- a/etc/gedit.profile +++ b/etc/gedit.profile | |||
@@ -1,50 +1 @@ | |||
1 | # Firejail profile for gedit | ]0;firejail /usr/bin/meld ./etc/gedit_LOCAL_29017.profile ./etc/gedit_BASE_29017.profile ./etc/gedit_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: Official text editor of the GNOME desktop environment | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include gedit.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.config/enchant | ||
10 | noblacklist ${HOME}/.config/gedit | ||
11 | noblacklist ${HOME}/.config/git | ||
12 | noblacklist ${HOME}/.gitconfig | ||
13 | noblacklist ${HOME}/.git-credentials | ||
14 | noblacklist ${HOME}/.python-history | ||
15 | noblacklist ${HOME}/.pythonrc.py | ||
16 | |||
17 | include disable-common.inc | ||
18 | # include disable-devel.inc | ||
19 | include disable-exec.inc | ||
20 | # include disable-interpreters.inc | ||
21 | include disable-passwdmgr.inc | ||
22 | include disable-programs.inc | ||
23 | |||
24 | include whitelist-var-common.inc | ||
25 | |||
26 | # apparmor - makes settings immutable | ||
27 | caps.drop all | ||
28 | machine-id | ||
29 | # net none - makes settings immutable | ||
30 | no3d | ||
31 | # nodbus - makes settings immutable | ||
32 | nodvd | ||
33 | nogroups | ||
34 | nonewprivs | ||
35 | noroot | ||
36 | nosound | ||
37 | notv | ||
38 | nou2f | ||
39 | novideo | ||
40 | protocol unix | ||
41 | seccomp | ||
42 | shell none | ||
43 | tracelog | ||
44 | |||
45 | # private-bin gedit | ||
46 | private-dev | ||
47 | # private-etc alternatives,fonts | ||
48 | private-lib /usr/bin/gedit,libtinfo.so.*,libreadline.so.*,gedit,libgspell-1.so.*,gconv,aspell | ||
49 | private-tmp | ||
50 | |||
diff --git a/etc/git.profile b/etc/git.profile index 0eb69faed..bdfdb4c41 100644 --- a/etc/git.profile +++ b/etc/git.profile | |||
@@ -1,51 +1 @@ | |||
1 | # Firejail profile for git | ]0;firejail /usr/bin/meld ./etc/git_LOCAL_29017.profile ./etc/git_BASE_29017.profile ./etc/git_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: Fast, scalable, distributed revision control system | ||
3 | # This file is overwritten after every install/update | ||
4 | quiet | ||
5 | # Persistent local customizations | ||
6 | include git.local | ||
7 | # Persistent global definitions | ||
8 | include globals.local | ||
9 | |||
10 | blacklist /tmp/.X11-unix | ||
11 | |||
12 | noblacklist ${HOME}/.config/git | ||
13 | noblacklist ${HOME}/.config/nano | ||
14 | noblacklist ${HOME}/.emacs | ||
15 | noblacklist ${HOME}/.emacs.d | ||
16 | noblacklist ${HOME}/.gitconfig | ||
17 | noblacklist ${HOME}/.git-credentials | ||
18 | noblacklist ${HOME}/.gnupg | ||
19 | noblacklist ${HOME}/.nanorc | ||
20 | noblacklist ${HOME}/.oh-my-zsh | ||
21 | noblacklist ${HOME}/.ssh | ||
22 | noblacklist ${HOME}/.vim | ||
23 | noblacklist ${HOME}/.viminfo | ||
24 | |||
25 | include disable-common.inc | ||
26 | include disable-exec.inc | ||
27 | include disable-passwdmgr.inc | ||
28 | include disable-programs.inc | ||
29 | |||
30 | apparmor | ||
31 | caps.drop all | ||
32 | ipc-namespace | ||
33 | machine-id | ||
34 | netfilter | ||
35 | no3d | ||
36 | nodvd | ||
37 | nogroups | ||
38 | nonewprivs | ||
39 | noroot | ||
40 | nosound | ||
41 | notv | ||
42 | nou2f | ||
43 | novideo | ||
44 | protocol unix,inet,inet6 | ||
45 | seccomp | ||
46 | shell none | ||
47 | |||
48 | private-cache | ||
49 | private-dev | ||
50 | |||
51 | memory-deny-write-execute | ||
diff --git a/etc/gitg.profile b/etc/gitg.profile index 656d5cfd8..7e48cedf7 100644 --- a/etc/gitg.profile +++ b/etc/gitg.profile | |||
@@ -1,44 +1 @@ | |||
1 | # Firejail profile for gitg | ]0;firejail /usr/bin/meld ./etc/gitg_LOCAL_29017.profile ./etc/gitg_BASE_29017.profile ./etc/gitg_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: Git repository viewer | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include gitg.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.config/git | ||
10 | noblacklist ${HOME}/.gitconfig | ||
11 | noblacklist ${HOME}/.git-credentials | ||
12 | noblacklist ${HOME}/.local/share/gitg | ||
13 | noblacklist ${HOME}/.ssh | ||
14 | |||
15 | include disable-common.inc | ||
16 | include disable-devel.inc | ||
17 | include disable-exec.inc | ||
18 | include disable-interpreters.inc | ||
19 | include disable-passwdmgr.inc | ||
20 | include disable-programs.inc | ||
21 | |||
22 | include whitelist-var-common.inc | ||
23 | |||
24 | caps.drop all | ||
25 | no3d | ||
26 | nodvd | ||
27 | nogroups | ||
28 | nonewprivs | ||
29 | noroot | ||
30 | nosound | ||
31 | notv | ||
32 | nou2f | ||
33 | novideo | ||
34 | protocol unix,inet,inet6 | ||
35 | seccomp | ||
36 | shell none | ||
37 | |||
38 | private-bin gitg,git,ssh | ||
39 | private-cache | ||
40 | private-dev | ||
41 | private-tmp | ||
42 | |||
43 | # mdwe breaks diff in older versions | ||
44 | #memory-deny-write-execute | ||
diff --git a/etc/github-desktop.profile b/etc/github-desktop.profile index 4a969f9ad..061b44c42 100644 --- a/etc/github-desktop.profile +++ b/etc/github-desktop.profile | |||
@@ -1,49 +1 @@ | |||
1 | # Firejail profile for github-desktop | ]0;firejail /usr/bin/meld ./etc/github-desktop_LOCAL_29017.profile ./etc/github-desktop_BASE_29017.profile ./etc/github-desktop_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: Extend your GitHub workflow beyond your browser with GitHub Desktop | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include github-desktop.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.config/GitHub Desktop | ||
10 | noblacklist ${HOME}/.config/git | ||
11 | noblacklist ${HOME}/.gitconfig | ||
12 | noblacklist ${HOME}/.git-credentials | ||
13 | |||
14 | include disable-common.inc | ||
15 | include disable-passwdmgr.inc | ||
16 | include disable-programs.inc | ||
17 | include disable-devel.inc | ||
18 | include disable-exec.inc | ||
19 | include disable-interpreters.inc | ||
20 | |||
21 | caps.drop all | ||
22 | netfilter | ||
23 | # no3d | ||
24 | nodvd | ||
25 | nogroups | ||
26 | nonewprivs | ||
27 | noroot | ||
28 | nosound | ||
29 | notv | ||
30 | nou2f | ||
31 | novideo | ||
32 | protocol unix,inet,inet6,netlink | ||
33 | seccomp | ||
34 | |||
35 | # Note: On debian-based distributions the binary might be located in | ||
36 | # /opt/GitHub Desktop/github-desktop, and therefore not be in PATH. | ||
37 | # If that's the case you can start GitHub Desktop with firejail via | ||
38 | # `firejail "/opt/GitHub Desktop/github-desktop"`. | ||
39 | |||
40 | disable-mnt | ||
41 | # private-bin github-desktop | ||
42 | private-cache | ||
43 | ?HAS_APPIMAGE: ignore private-dev | ||
44 | private-dev | ||
45 | # private-etc alternatives | ||
46 | # private-lib | ||
47 | private-tmp | ||
48 | |||
49 | # memory-deny-write-execute | ||
diff --git a/etc/gnome-builder.profile b/etc/gnome-builder.profile index c2459e6ee..09164ad4e 100644 --- a/etc/gnome-builder.profile +++ b/etc/gnome-builder.profile | |||
@@ -1,36 +1 @@ | |||
1 | # Firejail profile for gnome-builder | ]0;firejail /usr/bin/meld ./etc/gnome-builder_LOCAL_29017.profile ./etc/gnome-builder_BASE_29017.profile ./etc/gnome-builder_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: IDE for GNOME | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include gnome-builder.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.cargo/config | ||
10 | noblacklist ${HOME}/.cargo/registry | ||
11 | noblacklist ${HOME}/.config/git | ||
12 | noblacklist ${HOME}/.gitconfig | ||
13 | noblacklist ${HOME}/.git-credentials | ||
14 | noblacklist ${HOME}/.python-history | ||
15 | noblacklist ${HOME}/.pythonrc.py | ||
16 | |||
17 | include disable-common.inc | ||
18 | include disable-passwdmgr.inc | ||
19 | include disable-programs.inc | ||
20 | |||
21 | caps.drop all | ||
22 | ipc-namespace | ||
23 | netfilter | ||
24 | nodvd | ||
25 | nogroups | ||
26 | nonewprivs | ||
27 | noroot | ||
28 | notv | ||
29 | nou2f | ||
30 | novideo | ||
31 | protocol unix,inet,inet6 | ||
32 | seccomp | ||
33 | shell none | ||
34 | |||
35 | private-cache | ||
36 | private-dev | ||
diff --git a/etc/idea.sh.profile b/etc/idea.sh.profile index 4f3047e08..467265b79 100644 --- a/etc/idea.sh.profile +++ b/etc/idea.sh.profile | |||
@@ -1,42 +1 @@ | |||
1 | # Firejail profile for idea.sh | ]0;firejail /usr/bin/meld ./etc/idea.sh_LOCAL_29017.profile ./etc/idea.sh_BASE_29017.profile ./etc/idea.sh_REMOTE_29017.profile \ No newline at end of file | |
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include idea.sh.local | ||
5 | # Persistent global definitions | ||
6 | include globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.IdeaIC* | ||
9 | noblacklist ${HOME}/.android | ||
10 | noblacklist ${HOME}/.config/git | ||
11 | noblacklist ${HOME}/.gitconfig | ||
12 | noblacklist ${HOME}/.git-credentials | ||
13 | noblacklist ${HOME}/.gradle | ||
14 | noblacklist ${HOME}/.jack-server | ||
15 | noblacklist ${HOME}/.jack-settings | ||
16 | noblacklist ${HOME}/.java | ||
17 | noblacklist ${HOME}/.local/share/JetBrains | ||
18 | noblacklist ${HOME}/.ssh | ||
19 | noblacklist ${HOME}/.tooling | ||
20 | |||
21 | include disable-common.inc | ||
22 | include disable-passwdmgr.inc | ||
23 | include disable-programs.inc | ||
24 | |||
25 | caps.drop all | ||
26 | netfilter | ||
27 | nodvd | ||
28 | nogroups | ||
29 | nonewprivs | ||
30 | noroot | ||
31 | notv | ||
32 | nou2f | ||
33 | novideo | ||
34 | protocol unix,inet,inet6 | ||
35 | seccomp | ||
36 | shell none | ||
37 | |||
38 | private-cache | ||
39 | private-dev | ||
40 | # private-tmp | ||
41 | |||
42 | noexec /tmp | ||
diff --git a/etc/meld.profile b/etc/meld.profile index 5e5c86368..3d169a471 100644 --- a/etc/meld.profile +++ b/etc/meld.profile | |||
@@ -1,61 +1 @@ | |||
1 | # Firejail profile for meld | ]0;firejail /usr/bin/meld ./etc/meld_LOCAL_29017.profile ./etc/meld_BASE_29017.profile ./etc/meld_REMOTE_29017.profile \ No newline at end of file | |
2 | # Description: Graphical tool to diff and merge files | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include meld.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.local/share/meld | ||
10 | |||
11 | # Allow python (blacklisted by disable-interpreters.inc) | ||
12 | noblacklist ${PATH}/python2* | ||
13 | noblacklist ${PATH}/python3* | ||
14 | noblacklist /usr/lib/python2* | ||
15 | noblacklist /usr/lib/python3* | ||
16 | noblacklist /usr/local/lib/python2* | ||
17 | noblacklist /usr/local/lib/python3* | ||
18 | |||
19 | noblacklist ${HOME}/.config/git | ||
20 | noblacklist ${HOME}/.gitconfig | ||
21 | noblacklist ${HOME}/.git-credentials | ||
22 | noblacklist ${HOME}/.ssh | ||
23 | noblacklist ${HOME}/.subversion | ||
24 | |||
25 | # Uncomment the next line if you don't need to compare files in disable-common.inc. | ||
26 | #include disable-common.inc | ||
27 | include disable-devel.inc | ||
28 | include disable-exec.inc | ||
29 | include disable-interpreters.inc | ||
30 | include disable-passwdmgr.inc | ||
31 | # Uncomment the next line if you don't need to compare files in disable-programs.inc. | ||
32 | #include disable-programs.inc | ||
33 | |||
34 | include whitelist-var-common.inc | ||
35 | |||
36 | apparmor | ||
37 | caps.drop all | ||
38 | ipc-namespace | ||
39 | machine-id | ||
40 | netfilter | ||
41 | no3d | ||
42 | nodvd | ||
43 | nogroups | ||
44 | nonewprivs | ||
45 | noroot | ||
46 | nosound | ||
47 | notv | ||
48 | nou2f | ||
49 | novideo | ||
50 | protocol unix,inet,inet6 | ||
51 | seccomp | ||
52 | shell none | ||
53 | tracelog | ||
54 | |||
55 | private-bin bzr,cvs,git,hg,meld,python*,svn | ||
56 | private-cache | ||
57 | private-dev | ||
58 | # Uncomment the next line if you don't need to compare in /etc. | ||
59 | #private-etc alternatives,ca-certificates,crypto-policies,fonts,hostname,hosts,pki,resolv.conf,ssl,subversion | ||
60 | private-tmp | ||
61 | |||
diff --git a/etc/webstorm.profile b/etc/webstorm.profile index b97ea8d2f..ad8173c6f 100644 --- a/etc/webstorm.profile +++ b/etc/webstorm.profile | |||
@@ -1,43 +1 @@ | |||
1 | # Firejail profile for WebStorm | ]0;firejail /usr/bin/meld ./etc/webstorm_LOCAL_29017.profile ./etc/webstorm_BASE_29017.profile ./etc/webstorm_REMOTE_29017.profile \ No newline at end of file | |
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include webstorm.local | ||
5 | # Persistent global definitions | ||
6 | include globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.WebStorm* | ||
9 | noblacklist ${HOME}/.android | ||
10 | noblacklist ${HOME}/.config/git | ||
11 | noblacklist ${HOME}/.gitconfig | ||
12 | noblacklist ${HOME}/.git-credentials | ||
13 | noblacklist ${HOME}/.gradle | ||
14 | noblacklist ${HOME}/.java | ||
15 | noblacklist ${HOME}/.local/share/JetBrains | ||
16 | noblacklist ${HOME}/.ssh | ||
17 | noblacklist ${HOME}/.tooling | ||
18 | |||
19 | noblacklist ${PATH}/node | ||
20 | noblacklist ${HOME}/.nvm | ||
21 | |||
22 | include disable-common.inc | ||
23 | include disable-devel.inc | ||
24 | include disable-interpreters.inc | ||
25 | include disable-passwdmgr.inc | ||
26 | include disable-programs.inc | ||
27 | |||
28 | caps.drop all | ||
29 | netfilter | ||
30 | nodvd | ||
31 | nogroups | ||
32 | nonewprivs | ||
33 | noroot | ||
34 | notv | ||
35 | nou2f | ||
36 | novideo | ||
37 | protocol unix,inet,inet6 | ||
38 | seccomp | ||
39 | shell none | ||
40 | |||
41 | private-cache | ||
42 | private-dev | ||
43 | private-tmp | ||