aisleriot profile

author: netblue30 <netblue30@yahoo.com> 2018-10-28 14:52:47 -0400
committer: netblue30 <netblue30@yahoo.com> 2018-10-28 14:52:47 -0400
commit: 96f2c32c0bcda0eb4267b7af98da577acb0876d5 (patch)
tree: 9b3cfcc960f78084dcfd415a5d6be1c4148467df
parent: aisleriot (diff)
download: firejail-96f2c32c0bcda0eb4267b7af98da577acb0876d5.tar.gz
firejail-96f2c32c0bcda0eb4267b7af98da577acb0876d5.tar.zst
firejail-96f2c32c0bcda0eb4267b7af98da577acb0876d5.zip
1 files changed, 48 insertions, 0 deletions
diff --git a/etc/sol.profile b/etc/sol.profile
new file mode 100644
index 000000000..c0ad3c739
--- /dev/null
+++ b/etc/sol.profile
@@ -0,0 +1,48 @@
+# Firejail profile for default
+# This file is overwritten after every install/update
+# Persistent local customizations
+include sol.local
+# Persistent global definitions
+include globals.local
+include disable-common.inc
+include disable-devel.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+# all necessary files in $HOME are in whitelist-common.inc
+include whitelist-common.inc
+include whitelist-var-common.inc
+net none
+caps.drop all
+# ipc-namespace
+# netfilter
+# no3d
+# nodbus
+nodvd
+nogroups
+nonewprivs
+noroot
+# nosound
+notv
+nou2f
+novideo
+protocol unix
+seccomp
+shell none
+disable-mnt
+# private
+private-bin sol
+# private-cache
+private-dev
+# private-etc none
+# private-lib
+private-tmp
+memory-deny-write-execute
+noexec ${HOME}
+noexec /tmp
author	netblue30 <netblue30@yahoo.com>	2018-10-28 14:52:47 -0400
committer	netblue30 <netblue30@yahoo.com>	2018-10-28 14:52:47 -0400
commit	96f2c32c0bcda0eb4267b7af98da577acb0876d5 (patch)
tree	9b3cfcc960f78084dcfd415a5d6be1c4148467df
parent	aisleriot (diff)
download	firejail-96f2c32c0bcda0eb4267b7af98da577acb0876d5.tar.gz firejail-96f2c32c0bcda0eb4267b7af98da577acb0876d5.tar.zst firejail-96f2c32c0bcda0eb4267b7af98da577acb0876d5.zip

diff --git a/etc/sol.profile b/etc/sol.profile new file mode 100644 index 000000000..c0ad3c739 --- /dev/null +++ b/etc/sol.profile
@@ -0,0 +1,48 @@
	1	# Firejail profile for default
	2	# This file is overwritten after every install/update
	3	# Persistent local customizations
	4	include sol.local
	5	# Persistent global definitions
	6	include globals.local
	7
	8	include disable-common.inc
	9	include disable-devel.inc
	10	include disable-interpreters.inc
	11	include disable-passwdmgr.inc
	12	include disable-programs.inc
	13	include disable-xdg.inc
	14
	15	# all necessary files in $HOME are in whitelist-common.inc
	16	include whitelist-common.inc
	17	include whitelist-var-common.inc
	18	net none
	19
	20	caps.drop all
	21	# ipc-namespace
	22	# netfilter
	23	# no3d
	24	# nodbus
	25	nodvd
	26	nogroups
	27	nonewprivs
	28	noroot
	29	# nosound
	30	notv
	31	nou2f
	32	novideo
	33	protocol unix
	34	seccomp
	35	shell none
	36
	37	disable-mnt
	38	# private
	39	private-bin sol
	40	# private-cache
	41	private-dev
	42	# private-etc none
	43	# private-lib
	44	private-tmp
	45
	46	memory-deny-write-execute
	47	noexec ${HOME}
	48	noexec /tmp