New profile: mimetype.profile (#6247)

Description: Determines the file type. https://metacpan.org/release/File-MimeInfo https://archlinux.org/packages/extra/any/perl-file-mimeinfo/
author: glitsj16 <glitsj16@users.noreply.github.com> 2024-03-19 06:08:35 +0000
committer: GitHub <noreply@github.com> 2024-03-19 06:08:35 +0000
commit: 161318dc2b32111150d88db4d5a39f46aa617ed7 (patch)
tree: 98b4bd6f750f67fac0517586f8c7e3aace51b133
parent: New profile: tvnamer.profile (#6256) (diff)
download: firejail-161318dc2b32111150d88db4d5a39f46aa617ed7.tar.gz
firejail-161318dc2b32111150d88db4d5a39f46aa617ed7.tar.zst
firejail-161318dc2b32111150d88db4d5a39f46aa617ed7.zip
1 files changed, 48 insertions, 0 deletions
diff --git a/etc/profile-m-z/mimetype.profile b/etc/profile-m-z/mimetype.profile
new file mode 100644
index 000000000..9902da882
--- /dev/null
+++ b/etc/profile-m-z/mimetype.profile
@@ -0,0 +1,48 @@
+# Firejail profile for mimetype
+# Description: Determines the file type
+# This file is overwritten after every install/update
+quiet
+# Persistent local customizations
+include mimetype.local
+# Persistent global definitions
+include globals.local
+blacklist /tmp/.X11-unix
+blacklist ${RUNUSER}/wayland-*
+include disable-exec.inc
+include disable-proc.inc
+apparmor
+caps.drop all
+ipc-namespace
+machine-id
+net none
+no3d
+nodvd
+nogroups
+noinput
+nonewprivs
+noprinters
+noroot
+nosound
+notv
+nou2f
+novideo
+protocol unix
+seccomp
+seccomp.block-secondary
+tracelog
+x11 none
+private-dev
+dbus-user none
+dbus-system none
+memory-deny-write-execute
+read-only ${HOME}
+read-only ${RUNUSER}
+read-only /tmp
+restrict-namespaces
author	glitsj16 <glitsj16@users.noreply.github.com>	2024-03-19 06:08:35 +0000
committer	GitHub <noreply@github.com>	2024-03-19 06:08:35 +0000
commit	161318dc2b32111150d88db4d5a39f46aa617ed7 (patch)
tree	98b4bd6f750f67fac0517586f8c7e3aace51b133
parent	New profile: tvnamer.profile (#6256) (diff)
download	firejail-161318dc2b32111150d88db4d5a39f46aa617ed7.tar.gz firejail-161318dc2b32111150d88db4d5a39f46aa617ed7.tar.zst firejail-161318dc2b32111150d88db4d5a39f46aa617ed7.zip

diff --git a/etc/profile-m-z/mimetype.profile b/etc/profile-m-z/mimetype.profile new file mode 100644 index 000000000..9902da882 --- /dev/null +++ b/etc/profile-m-z/mimetype.profile
@@ -0,0 +1,48 @@
	1	# Firejail profile for mimetype
	2	# Description: Determines the file type
	3	# This file is overwritten after every install/update
	4	quiet
	5	# Persistent local customizations
	6	include mimetype.local
	7	# Persistent global definitions
	8	include globals.local
	9
	10	blacklist /tmp/.X11-unix
	11	blacklist ${RUNUSER}/wayland-*
	12
	13	include disable-exec.inc
	14	include disable-proc.inc
	15
	16	apparmor
	17	caps.drop all
	18	ipc-namespace
	19	machine-id
	20	net none
	21	no3d
	22	nodvd
	23	nogroups
	24	noinput
	25	nonewprivs
	26	noprinters
	27	noroot
	28	nosound
	29	notv
	30	nou2f
	31	novideo
	32	protocol unix
	33	seccomp
	34	seccomp.block-secondary
	35	tracelog
	36	x11 none
	37
	38	private-dev
	39
	40	dbus-user none
	41	dbus-system none
	42
	43	memory-deny-write-execute
	44	read-only ${HOME}
	45	read-only ${RUNUSER}
	46	read-only /tmp
	47
	48	restrict-namespaces