aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar rusty-snake <41237666+rusty-snake@users.noreply.github.com>2020-04-03 14:33:12 +0200
committerLibravatar rusty-snake <41237666+rusty-snake@users.noreply.github.com>2020-04-04 19:53:38 +0200
commit972e4a6b1754652e258db525e2059effc202ccb3 (patch)
tree385cd2a316735b24a70fcf01ec5369aa9797a830
parentFixes for slack 4.4 (diff)
downloadfirejail-972e4a6b1754652e258db525e2059effc202ccb3.tar.gz
firejail-972e4a6b1754652e258db525e2059effc202ccb3.tar.zst
firejail-972e4a6b1754652e258db525e2059effc202ccb3.zip
more games
- blobwars - gravity-beams-and-evaporating-stars - hyperrogue - jumpnbump-menu (alias) - jumpnbump - magicor - mindless - mirrormagic - mrrescue - scorched3d-wrapper (alias) - scorchwentbonkers - seahorse-adventures - wordwarvi - xbill
Diffstat
-rw-r--r--README.md2
-rw-r--r--RELNOTES5
-rw-r--r--etc/blobwars.profile47
-rw-r--r--etc/disable-programs.inc8
-rw-r--r--etc/gravity-beams-and-evaporating-stars.profile44
-rw-r--r--etc/hyperrogue.profile48
-rw-r--r--etc/jumpnbump-menu.profile15
-rw-r--r--etc/jumpnbump.profile47
-rw-r--r--etc/magicor.profile49
-rw-r--r--etc/mindless.profile48
-rw-r--r--etc/mirrormagic.profile48
-rw-r--r--etc/mrrescue.profile47
-rw-r--r--etc/scorched3d-wrapper.profile5
-rw-r--r--etc/scorchwentbonkers.profile47
-rw-r--r--etc/seahorse-adventures.profile48
-rw-r--r--etc/wordwarvi.profile49
-rw-r--r--etc/xbill.profile51
-rw-r--r--src/firecfg/firecfg.config14
18 files changed, 620 insertions, 2 deletions
diff --git a/README.md b/README.md
index 720a25d31..5581cb43b 100644
--- a/README.md
+++ b/README.md
@@ -178,4 +178,4 @@ Run ./profstats -h for help.
178### New profiles: 178### New profiles:
179 179
180gfeeds, firefox-x11, tvbrowser, rtv, clipgrab, gnome-passwordsafe, bibtex, gummi, latex, pdflatex, tex, wpp, wpspdf, wps, et, multimc, gnome-hexgl, com.github.johnfactotum.Foliate, desktopeditors, impressive, mupdf-gl, mupdf-x11, mupdf-x11-curl, muraster, mutool, planmaker18, planmaker18free, presentations18, presentations18free, textmaker18, textmaker18free, teams, xournal, 180gfeeds, firefox-x11, tvbrowser, rtv, clipgrab, gnome-passwordsafe, bibtex, gummi, latex, pdflatex, tex, wpp, wpspdf, wps, et, multimc, gnome-hexgl, com.github.johnfactotum.Foliate, desktopeditors, impressive, mupdf-gl, mupdf-x11, mupdf-x11-curl, muraster, mutool, planmaker18, planmaker18free, presentations18, presentations18free, textmaker18, textmaker18free, teams, xournal,
181gnome-screenshot, ripperX, sound-juicer, iagno, com.github.dahenson.agenda, gnome-pomodoro, gnome-todo, kmplayer, penguin-command, x2goclient, frogatto, gnome-mines, gnome-nibbles, lightsoff, ts3client_runscript.sh, warmux, ferdi, abiword, four-in-a-row, gnome-mahjongg, gnome-robots, gnome-sudoku, gnome-taquin, gnome-tetravex 181gnome-screenshot, ripperX, sound-juicer, iagno, com.github.dahenson.agenda, gnome-pomodoro, gnome-todo, kmplayer, penguin-command, x2goclient, frogatto, gnome-mines, gnome-nibbles, lightsoff, ts3client_runscript.sh, warmux, ferdi, abiword, four-in-a-row, gnome-mahjongg, gnome-robots, gnome-sudoku, gnome-taquin, gnome-tetravex, blobwars, gravity-beams-and-evaporating-stars, hyperrogue, jumpnbump-menu, jumpnbump, magicor, mindless, mirrormagic, mrrescue, scorched3d-wrapper, scorchwentbonkers, seahorse-adventures, wordwarvi, xbill
diff --git a/RELNOTES b/RELNOTES
index 247a3ebe6..5e396f3f2 100644
--- a/RELNOTES
+++ b/RELNOTES
@@ -18,7 +18,10 @@ firejail (0.9.63) baseline; urgency=low
18 * new profiles: frogatto, gnome-mines, gnome-nibbles, lightsoff, warmux 18 * new profiles: frogatto, gnome-mines, gnome-nibbles, lightsoff, warmux
19 * new profiles: ts3client_runscript.sh, ferdi, abiword, four-in-a-row 19 * new profiles: ts3client_runscript.sh, ferdi, abiword, four-in-a-row
20 * new profiles: gnome-mahjongg, gnome-robots, gnome-sudoku, gnome-taquin 20 * new profiles: gnome-mahjongg, gnome-robots, gnome-sudoku, gnome-taquin
21 * new profiles: gnome-tetravex 21 * new profiles: gnome-tetravex, blobwars, gravity-beams-and-evaporating-stars
22 * new profiles: hyperrogue, jumpnbump-menu, jumpnbump, magicor, mindless
23 * new profiles: mirrormagic, mrrescue, scorched3d-wrapper, scorchwentbonkers
24 * new profiles: seahorse-adventures, wordwarvi, xbill
22 25
23firejail (0.9.62) baseline; urgency=low 26firejail (0.9.62) baseline; urgency=low
24 * added file-copy-limit in /etc/firejail/firejail.config 27 * added file-copy-limit in /etc/firejail/firejail.config
diff --git a/etc/blobwars.profile b/etc/blobwars.profile
new file mode 100644
index 000000000..c0fa5ab91
--- /dev/null
+++ b/etc/blobwars.profile
@@ -0,0 +1,47 @@
1# Firejail profile for blobwars
2# Description: Mission and Objective based 2D Platform Game
3# This file is overwritten after every install/update
4# Persistent local customizations
5include blobwars.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.parallelrealities/blobwars
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19mkdir ${HOME}/.parallelrealities/blobwars
20whitelist ${HOME}/.parallelrealities/blobwars
21whitelist /usr/share/blobwars
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29nodbus
30nodvd
31nogroups
32nonewprivs
33noroot
34notv
35nou2f
36novideo
37protocol unix,netlink
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private-bin blobwars
44private-cache
45private-dev
46private-etc machine-id
47private-tmp
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 5bb2f851a..1cbc9f6d4 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -10,6 +10,7 @@ blacklist ${HOME}/SoftMaker
10blacklist ${HOME}/Standard Notes Backups 10blacklist ${HOME}/Standard Notes Backups
11blacklist ${HOME}/TeamSpeak3-Client-linux_x86 11blacklist ${HOME}/TeamSpeak3-Client-linux_x86
12blacklist ${HOME}/TeamSpeak3-Client-linux_amd64 12blacklist ${HOME}/TeamSpeak3-Client-linux_amd64
13blacklist ${HOME}/hyperrogue.ini
13blacklist ${HOME}/mps 14blacklist ${HOME}/mps
14blacklist ${HOME}/wallet.dat 15blacklist ${HOME}/wallet.dat
15blacklist ${HOME}/.*coin 16blacklist ${HOME}/.*coin
@@ -410,6 +411,7 @@ blacklist ${HOME}/.jak
410blacklist ${HOME}/.java 411blacklist ${HOME}/.java
411blacklist ${HOME}/.jd 412blacklist ${HOME}/.jd
412blacklist ${HOME}/.jitsi 413blacklist ${HOME}/.jitsi
414blacklist ${HOME}/.jumpnbump
413blacklist ${HOME}/.kde/share/apps/digikam 415blacklist ${HOME}/.kde/share/apps/digikam
414blacklist ${HOME}/.kde/share/apps/gwenview 416blacklist ${HOME}/.kde/share/apps/gwenview
415blacklist ${HOME}/.kde/share/apps/kaffeine 417blacklist ${HOME}/.kde/share/apps/kaffeine
@@ -574,6 +576,7 @@ blacklist ${HOME}/.local/share/kwrite
574blacklist ${HOME}/.local/share/liferea 576blacklist ${HOME}/.local/share/liferea
575blacklist ${HOME}/.local/share/local-mail 577blacklist ${HOME}/.local/share/local-mail
576blacklist ${HOME}/.local/share/lollypop 578blacklist ${HOME}/.local/share/lollypop
579blacklist ${HOME}/.local/share/love
577blacklist ${HOME}/.local/share/lugaru 580blacklist ${HOME}/.local/share/lugaru
578blacklist ${HOME}/.local/share/mana 581blacklist ${HOME}/.local/share/mana
579blacklist ${HOME}/.local/share/maps-places.json 582blacklist ${HOME}/.local/share/maps-places.json
@@ -624,12 +627,14 @@ blacklist ${HOME}/.local/share/xplayer
624blacklist ${HOME}/.local/share/xreader 627blacklist ${HOME}/.local/share/xreader
625blacklist ${HOME}/.local/share/zathura 628blacklist ${HOME}/.local/share/zathura
626blacklist ${HOME}/.lv2 629blacklist ${HOME}/.lv2
630blacklist ${HOME}/.magicor
627blacklist ${HOME}/.masterpdfeditor 631blacklist ${HOME}/.masterpdfeditor
628blacklist ${HOME}/.mcabber 632blacklist ${HOME}/.mcabber
629blacklist ${HOME}/.mcabberrc 633blacklist ${HOME}/.mcabberrc
630blacklist ${HOME}/.mediathek3 634blacklist ${HOME}/.mediathek3
631blacklist ${HOME}/.megaglest 635blacklist ${HOME}/.megaglest
632blacklist ${HOME}/.minetest 636blacklist ${HOME}/.minetest
637blacklist ${HOME}/.mirrormagic
633blacklist ${HOME}/.moonchild productions/basilisk 638blacklist ${HOME}/.moonchild productions/basilisk
634blacklist ${HOME}/.moonchild productions/pale moon 639blacklist ${HOME}/.moonchild productions/pale moon
635blacklist ${HOME}/.mozilla 640blacklist ${HOME}/.mozilla
@@ -655,6 +660,7 @@ blacklist ${HOME}/.openttd
655blacklist ${HOME}/.opera 660blacklist ${HOME}/.opera
656blacklist ${HOME}/.opera-beta 661blacklist ${HOME}/.opera-beta
657blacklist ${HOME}/.ostrichriders 662blacklist ${HOME}/.ostrichriders
663blacklist ${HOME}/.parallelrealities/blobwars
658blacklist ${HOME}/.penguin-command 664blacklist ${HOME}/.penguin-command
659blacklist ${HOME}/.pingus 665blacklist ${HOME}/.pingus
660blacklist ${HOME}/.pioneer 666blacklist ${HOME}/.pioneer
@@ -681,6 +687,7 @@ blacklist ${HOME}/.steampid
681blacklist ${HOME}/.stellarium 687blacklist ${HOME}/.stellarium
682blacklist ${HOME}/.subversion 688blacklist ${HOME}/.subversion
683blacklist ${HOME}/.surf 689blacklist ${HOME}/.surf
690blacklist ${HOME}/.swb.ini
684blacklist ${HOME}/.sword 691blacklist ${HOME}/.sword
685blacklist ${HOME}/.sylpheed-2.0 692blacklist ${HOME}/.sylpheed-2.0
686blacklist ${HOME}/.synfig 693blacklist ${HOME}/.synfig
@@ -716,6 +723,7 @@ blacklist ${HOME}/.widelands
716blacklist ${HOME}/.wine 723blacklist ${HOME}/.wine
717blacklist ${HOME}/.wine64 724blacklist ${HOME}/.wine64
718blacklist ${HOME}/.wireshark 725blacklist ${HOME}/.wireshark
726blacklist ${HOME}/.wordwarvi
719blacklist ${HOME}/.wormux 727blacklist ${HOME}/.wormux
720blacklist ${HOME}/.xiphos 728blacklist ${HOME}/.xiphos
721blacklist ${HOME}/.xmind 729blacklist ${HOME}/.xmind
diff --git a/etc/gravity-beams-and-evaporating-stars.profile b/etc/gravity-beams-and-evaporating-stars.profile
new file mode 100644
index 000000000..a0ffa0d88
--- /dev/null
+++ b/etc/gravity-beams-and-evaporating-stars.profile
@@ -0,0 +1,44 @@
1# Firejail profile for gravity-beams-and-evaporating-stars
2# Description: a game about hurling asteroids into the sun
3# This file is overwritten after every install/update
4# Persistent local customizations
5include gravity-beams-and-evaporating-stars.local
6# Persistent global definitions
7include globals.local
8
9include disable-common.inc
10include disable-devel.inc
11include disable-exec.inc
12include disable-interpreters.inc
13include disable-passwdmgr.inc
14include disable-programs.inc
15include disable-xdg.inc
16
17whitelist /usr/share/gravity-beams-and-evaporating-stars
18include whitelist-common.inc
19include whitelist-usr-share-common.inc
20include whitelist-var-common.inc
21
22apparmor
23caps.drop all
24net none
25nodbus
26nodvd
27nogroups
28nonewprivs
29noroot
30notv
31nou2f
32novideo
33protocol unix
34seccomp
35shell none
36tracelog
37
38disable-mnt
39private
40private-bin gravity-beams-and-evaporating-stars
41private-cache
42private-dev
43private-etc fonts,machine-id
44private-tmp
diff --git a/etc/hyperrogue.profile b/etc/hyperrogue.profile
new file mode 100644
index 000000000..e6b385de9
--- /dev/null
+++ b/etc/hyperrogue.profile
@@ -0,0 +1,48 @@
1# Firejail profile for hyperrogue
2# Description: An SDL roguelike in a non-euclidean world
3# This file is overwritten after every install/update
4# Persistent local customizations
5include hyperrogue.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/hyperrogue.ini
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19mkfile ${HOME}/hyperrogue.ini
20whitelist ${HOME}/hyperrogue.ini
21whitelist /usr/share/hyperrogue
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29nodbus
30nodvd
31nogroups
32nonewprivs
33noroot
34notv
35nou2f
36novideo
37protocol unix
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private-bin hyperrogue
44private-cache
45private-cwd ${HOME}
46private-dev
47private-etc fonts,machine-id
48private-tmp
diff --git a/etc/jumpnbump-menu.profile b/etc/jumpnbump-menu.profile
new file mode 100644
index 000000000..b1852b015
--- /dev/null
+++ b/etc/jumpnbump-menu.profile
@@ -0,0 +1,15 @@
1# Firejail profile for jumpnbump-menu
2# Description: Level selection and config menu for the Jump 'n Bump game
3# This file is overwritten after every install/update
4# Persistent local customizations
5include jumpnbump-menu.local
6# Persistent global definitions
7# added by included profile
8#include globals.local
9
10include allow-python3.inc
11
12private-bin jumpnbump-menu,python3*
13
14# Redirect
15include jumpnbump.profile
diff --git a/etc/jumpnbump.profile b/etc/jumpnbump.profile
new file mode 100644
index 000000000..c8167e1dc
--- /dev/null
+++ b/etc/jumpnbump.profile
@@ -0,0 +1,47 @@
1# Firejail profile for jumpnbump
2# Description: Cute multiplayer platform game with bunnies
3# This file is overwritten after every install/update
4# Persistent local customizations
5include jumpnbump.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.jumpnbump
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19mkdir ${HOME}/.jumpnbump
20whitelist ${HOME}/.jumpnbump
21whitelist /usr/share/jumpnbump
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29nodbus
30nodvd
31nogroups
32nonewprivs
33noroot
34notv
35nou2f
36novideo
37protocol unix,netlink
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private-bin jumpnbump
44private-cache
45private-dev
46private-etc none
47private-tmp
diff --git a/etc/magicor.profile b/etc/magicor.profile
new file mode 100644
index 000000000..c34e7b6f2
--- /dev/null
+++ b/etc/magicor.profile
@@ -0,0 +1,49 @@
1# Firejail profile for magicor
2# Description: Push ice blocks around to extinguish all fires
3# This file is overwritten after every install/update
4# Persistent local customizations
5include magicor.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.magicor
10
11# Allow python (blacklisted by disable-interpreters.inc)
12include allow-python2.inc
13
14include disable-common.inc
15include disable-devel.inc
16include disable-exec.inc
17include disable-interpreters.inc
18include disable-passwdmgr.inc
19include disable-programs.inc
20include disable-xdg.inc
21
22mkdir ${HOME}/.magicor
23whitelist ${HOME}/.magicor
24whitelist /usr/share/magicor
25include whitelist-common.inc
26include whitelist-usr-share-common.inc
27include whitelist-var-common.inc
28
29apparmor
30caps.drop all
31net none
32nodbus
33nodvd
34nogroups
35nonewprivs
36notv
37nou2f
38novideo
39protocol unix
40seccomp
41shell none
42tracelog
43
44disable-mnt
45private-bin magicor,python2*
46private-cache
47private-dev
48private-etc machine-id
49private-tmp
diff --git a/etc/mindless.profile b/etc/mindless.profile
new file mode 100644
index 000000000..4f33404eb
--- /dev/null
+++ b/etc/mindless.profile
@@ -0,0 +1,48 @@
1# Firejail profile for mindless
2# Description: figure out the secret code
3# This file is overwritten after every install/update
4# Persistent local customizations
5include mindless.local
6# Persistent global definitions
7include globals.local
8
9include disable-common.inc
10include disable-devel.inc
11include disable-exec.inc
12include disable-interpreters.inc
13include disable-passwdmgr.inc
14include disable-programs.inc
15include disable-xdg.inc
16
17whitelist /usr/share/mindless
18include whitelist-usr-share-common.inc
19include whitelist-var-common.inc
20
21apparmor
22caps.drop all
23machine-id
24net none
25no3d
26nodbus
27nodvd
28nogroups
29nonewprivs
30noroot
31nosound
32notv
33nou2f
34novideo
35protocol unix
36seccomp
37shell none
38tracelog
39
40disable-mnt
41private
42private-bin mindless
43private-cache
44private-dev
45private-etc fonts
46private-tmp
47
48memory-deny-write-execute
diff --git a/etc/mirrormagic.profile b/etc/mirrormagic.profile
new file mode 100644
index 000000000..8892ca94d
--- /dev/null
+++ b/etc/mirrormagic.profile
@@ -0,0 +1,48 @@
1# Firejail profile for mirrormagic
2# Description: Puzzle game where you steer a beam of light using mirrors
3# This file is overwritten after every install/update
4# Persistent local customizations
5include mirrormagic.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.mirrormagic
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19mkdir ${HOME}/.mirrormagic
20whitelist ${HOME}/.mirrormagic
21whitelist /usr/share/mirrormagic
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29nodbus
30nodvd
31nogroups
32nonewprivs
33noroot
34notv
35nou2f
36novideo
37protocol unix,netlink
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private
44private-bin mirrormagic
45private-cache
46private-dev
47private-etc machine-id
48private-tmp
diff --git a/etc/mrrescue.profile b/etc/mrrescue.profile
new file mode 100644
index 000000000..869a162f8
--- /dev/null
+++ b/etc/mrrescue.profile
@@ -0,0 +1,47 @@
1# Firejail profile for mrrescue
2# Description: Arcade-style fire fighting game
3# This file is overwritten after every install/update
4# Persistent local customizations
5include mrrescue.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.local/share/love
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19mkdir ${HOME}/.local/share/love
20whitelist ${HOME}/.local/share/love
21whitelist /usr/share/mrrescue
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29nodbus
30nodvd
31nogroups
32nonewprivs
33noroot
34notv
35nou2f
36novideo
37protocol unix,netlink
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private-bin love,mrrescue,sh
44private-cache
45private-dev
46private-etc machine-id
47private-tmp
diff --git a/etc/scorched3d-wrapper.profile b/etc/scorched3d-wrapper.profile
new file mode 100644
index 000000000..3eed8842b
--- /dev/null
+++ b/etc/scorched3d-wrapper.profile
@@ -0,0 +1,5 @@
1# Firejail profile for scorched3d
2# This file is overwritten after every install/update
3
4# Redirect
5include scorched3d.profile
diff --git a/etc/scorchwentbonkers.profile b/etc/scorchwentbonkers.profile
new file mode 100644
index 000000000..fcb3d5f29
--- /dev/null
+++ b/etc/scorchwentbonkers.profile
@@ -0,0 +1,47 @@
1# Firejail profile for scorchwentbonkers
2# Description: Realtime remake of Scorched Earth
3# This file is overwritten after every install/update
4# Persistent local customizations
5include scorchwentbonkers.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.swb.ini
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19mkdir ${HOME}/.swb.ini
20whitelist ${HOME}/.swb.ini
21whitelist /usr/share/scorchwentbonkers
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29nodbus
30nodvd
31nogroups
32nonewprivs
33noroot
34notv
35nou2f
36novideo
37protocol unix
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private-bin scorchwentbonkers
44private-cache
45private-dev
46private-etc alsa,asound.conf,machine-id,pulse
47private-tmp
diff --git a/etc/seahorse-adventures.profile b/etc/seahorse-adventures.profile
new file mode 100644
index 000000000..5fd654eed
--- /dev/null
+++ b/etc/seahorse-adventures.profile
@@ -0,0 +1,48 @@
1# Firejail profile for seahorse-adventures
2# Description: Help barbie the seahorse float on bubbles to the moon
3# This file is overwritten after every install/update
4# Persistent local customizations
5include seahorse-adventures.local
6# Persistent global definitions
7include globals.local
8
9# Allow python (blacklisted by disable-interpreters.inc)
10include allow-python2.inc
11include allow-python3.inc
12
13include disable-common.inc
14include disable-devel.inc
15include disable-exec.inc
16include disable-interpreters.inc
17include disable-passwdmgr.inc
18include disable-programs.inc
19include disable-xdg.inc
20
21whitelist /usr/share/seahorse-adventures
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29nodbus
30nodvd
31nogroups
32nonewprivs
33noroot
34notv
35nou2f
36novideo
37protocol unix
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private
44private-bin python*,seahorse-adventures
45private-cache
46private-dev
47private-etc machine-id
48private-tmp
diff --git a/etc/wordwarvi.profile b/etc/wordwarvi.profile
new file mode 100644
index 000000000..ea750e172
--- /dev/null
+++ b/etc/wordwarvi.profile
@@ -0,0 +1,49 @@
1# Firejail profile for wordwarvi
2# Description: Old school '80's style side scrolling space shoot'em up game.
3# This file is overwritten after every install/update
4# Persistent local customizations
5include wordwarvi.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.wordwarvi
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19mkdir ${HOME}/.wordwarvi
20whitelist ${HOME}/.wordwarvi
21whitelist /usr/share/wordwarvi
22include whitelist-common.inc
23include whitelist-usr-share-common.inc
24include whitelist-var-common.inc
25
26apparmor
27caps.drop all
28net none
29no3d
30nodbus
31nodvd
32nogroups
33nonewprivs
34noroot
35notv
36nou2f
37novideo
38protocol unix
39seccomp
40shell none
41tracelog
42
43disable-mnt
44private
45private-bin wordwarvi
46private-cache
47private-dev
48private-etc alsa,asound.conf,machine-id,pulse
49private-tmp
diff --git a/etc/xbill.profile b/etc/xbill.profile
new file mode 100644
index 000000000..fc29dced6
--- /dev/null
+++ b/etc/xbill.profile
@@ -0,0 +1,51 @@
1# Firejail profile for xbill
2# Description: save your computers from Wingdows [TM] virus
3# This file is overwritten after every install/update
4# Persistent local customizations
5include xbill.local
6# Persistent global definitions
7include globals.local
8
9include disable-common.inc
10include disable-devel.inc
11include disable-exec.inc
12include disable-interpreters.inc
13include disable-passwdmgr.inc
14include disable-programs.inc
15include disable-xdg.inc
16
17whitelist /usr/share/xbill
18whitelist /var/games/xbill/scores
19include whitelist-common.inc
20include whitelist-usr-share-common.inc
21include whitelist-var-common.inc
22
23apparmor
24caps.drop all
25machine-id
26net none
27no3d
28nodbus
29nodvd
30nogroups
31nonewprivs
32noroot
33nosound
34notv
35nou2f
36novideo
37protocol unix
38seccomp
39shell none
40tracelog
41
42disable-mnt
43private
44private-bin xbill
45private-cache
46private-dev
47private-etc none
48private-tmp
49
50memory-deny-write-execute
51read-only ${HOME}
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index e79fd4b14..df4224b0b 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -80,6 +80,7 @@ bleachbit
80blender 80blender
81blender-2.8 81blender-2.8
82bless 82bless
83blobwars
83bluefish 84bluefish
84bnox 85bnox
85brackets 86brackets
@@ -309,6 +310,7 @@ gpicview
309gpredict 310gpredict
310gradio 311gradio
311gramps 312gramps
313gravity-beams-and-evaporating-stars
312gthumb 314gthumb
313guayadeque 315guayadeque
314gucharmap 316gucharmap
@@ -322,6 +324,7 @@ hexchat
322highlight 324highlight
323host 325host
324hugin 326hugin
327hyperrogue
325iagno 328iagno
326icecat 329icecat
327icedove 330icedove
@@ -341,6 +344,8 @@ jd-gui
341jdownloader 344jdownloader
342jerry 345jerry
343jitsi 346jitsi
347jumpnbump
348jumpnbump-menu
344k3b 349k3b
345kaffeine 350kaffeine
346kalgebra 351kalgebra
@@ -409,6 +414,7 @@ lximage-qt
409lxmusic 414lxmusic
410lynx 415lynx
411macrofusion 416macrofusion
417magicor
412manaplus 418manaplus
413masterpdfeditor 419masterpdfeditor
414masterpdfeditor4 420masterpdfeditor4
@@ -429,7 +435,9 @@ mendeleydesktop
429meteo-qt 435meteo-qt
430midori 436midori
431min 437min
438mindless
432minetest 439minetest
440mirrormagic
433mousepad 441mousepad
434mp3splt 442mp3splt
435mp3splt-gtk 443mp3splt-gtk
@@ -449,6 +457,7 @@ mpg123-strip
449mplayer 457mplayer
450mpsyt 458mpsyt
451mpv 459mpv
460mrrescue
452ms-excel 461ms-excel
453ms-office 462ms-office
454ms-onenote 463ms-onenote
@@ -578,9 +587,12 @@ runenpass.sh
578sayonara 587sayonara
579scallion 588scallion
580scorched3d 589scorched3d
590scorched3d-wrapper
591scorchwentbonkers
581scribus 592scribus
582sdat2img 593sdat2img
583seahorse 594seahorse
595seahorse-adventures
584seahorse-daemon 596seahorse-daemon
585seahorse-tool 597seahorse-tool
586seamonkey 598seamonkey
@@ -735,7 +747,9 @@ wireshark-qt
735wpp 747wpp
736wps 748wps
737wpspdf 749wpspdf
750wordwarvi
738x2goclient 751x2goclient
752xbill
739xcalc 753xcalc
740xchat 754xchat
741xed 755xed
generated by cgit v1.2.3-54-g00ecf (git 2.45.1) at 2024-05-28 04:43:23 +0000