diff options
| author |  SkewedZeppelin <8296104+SkewedZeppelin@users.noreply.github.com> | 2019-01-30 19:34:11 +0000 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2019-01-30 19:34:11 +0000 |
| commit | bb76241f4af039e7b8120af68cca54bac15e7872 (patch) | |
| tree | d92c44d27c05611fc529520092f98eab8833da60 | |
| parent | pybitmessage.profile: remove memory-deny-write-execute (diff) | |
| parent | Update some IDE profiles (diff) | |
| download | firejail-bb76241f4af039e7b8120af68cca54bac15e7872.tar.gz firejail-bb76241f4af039e7b8120af68cca54bac15e7872.tar.zst firejail-bb76241f4af039e7b8120af68cca54bac15e7872.zip | |
Merge pull request #2372 from rusty-snake/additional-blacklisting
additional blacklisting
| -rw-r--r-- | etc/disable-common.inc | 3 | ||||
| -rw-r--r-- | etc/disable-programs.inc | 1 | ||||
| -rw-r--r-- | etc/emacs.profile | 1 | ||||
| -rw-r--r-- | etc/geany.profile | 1 | ||||
| -rw-r--r-- | etc/gedit.profile | 1 | ||||
| -rw-r--r-- | etc/gnome-builder.profile | 1 | ||||
| -rw-r--r-- | etc/pycharm-community.profile | 1 | ||||
| -rw-r--r-- | etc/vim.profile | 1 | ||||
| -rw-r--r-- | etc/wget.profile | 1 |
9 files changed, 11 insertions, 0 deletions
diff --git a/etc/disable-common.inc b/etc/disable-common.inc index 6a599893e..985d658e0 100644 --- a/etc/disable-common.inc +++ b/etc/disable-common.inc | |||
| @@ -11,12 +11,15 @@ blacklist ${HOME}/.local/share/Trash | |||
| 11 | blacklist-nolog ${HOME}/.*_history | 11 | blacklist-nolog ${HOME}/.*_history |
| 12 | blacklist-nolog ${HOME}/.adobe | 12 | blacklist-nolog ${HOME}/.adobe |
| 13 | blacklist-nolog ${HOME}/.cache/greenclip* | 13 | blacklist-nolog ${HOME}/.cache/greenclip* |
| 14 | blacklist-nolog ${HOME}/.histfile | ||
| 14 | blacklist-nolog ${HOME}/.history | 15 | blacklist-nolog ${HOME}/.history |
| 15 | blacklist-nolog ${HOME}/.kde/share/apps/klipper | 16 | blacklist-nolog ${HOME}/.kde/share/apps/klipper |
| 16 | blacklist-nolog ${HOME}/.kde4/share/apps/klipper | 17 | blacklist-nolog ${HOME}/.kde4/share/apps/klipper |
| 17 | blacklist-nolog ${HOME}/.local/share/fish/fish_history | 18 | blacklist-nolog ${HOME}/.local/share/fish/fish_history |
| 18 | blacklist-nolog ${HOME}/.local/share/klipper | 19 | blacklist-nolog ${HOME}/.local/share/klipper |
| 19 | blacklist-nolog ${HOME}/.macromedia | 20 | blacklist-nolog ${HOME}/.macromedia |
| 21 | blacklist-nolog ${HOME}/.python-history | ||
| 22 | blacklist-nolog ${HOME}/.pythonhist | ||
| 20 | blacklist-nolog /tmp/clipmenu* | 23 | blacklist-nolog /tmp/clipmenu* |
| 21 | 24 | ||
| 22 | # X11 session autostart | 25 | # X11 session autostart |
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 20bf38bb5..308b76bd1 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
| @@ -539,6 +539,7 @@ blacklist ${HOME}/.w3m | |||
| 539 | blacklist ${HOME}/.warzone2100-3.* | 539 | blacklist ${HOME}/.warzone2100-3.* |
| 540 | blacklist ${HOME}/.waterfox | 540 | blacklist ${HOME}/.waterfox |
| 541 | blacklist ${HOME}/.weechat | 541 | blacklist ${HOME}/.weechat |
| 542 | blacklist ${HOME}/.wget-hsts | ||
| 542 | blacklist ${HOME}/.wgetrc | 543 | blacklist ${HOME}/.wgetrc |
| 543 | blacklist ${HOME}/.wine | 544 | blacklist ${HOME}/.wine |
| 544 | blacklist ${HOME}/.wireshark | 545 | blacklist ${HOME}/.wireshark |
diff --git a/etc/emacs.profile b/etc/emacs.profile index 06f1a6c53..0d87507df 100644 --- a/etc/emacs.profile +++ b/etc/emacs.profile | |||
| @@ -10,6 +10,7 @@ noblacklist ${HOME}/.emacs | |||
| 10 | noblacklist ${HOME}/.emacs.d | 10 | noblacklist ${HOME}/.emacs.d |
| 11 | # uncomment the following line if you need gpg | 11 | # uncomment the following line if you need gpg |
| 12 | #noblacklist ${HOME}/.gnupg | 12 | #noblacklist ${HOME}/.gnupg |
| 13 | noblacklist ${HOME}/.python-history | ||
| 13 | 14 | ||
| 14 | include disable-common.inc | 15 | include disable-common.inc |
| 15 | include disable-passwdmgr.inc | 16 | include disable-passwdmgr.inc |
diff --git a/etc/geany.profile b/etc/geany.profile index a236ea2c5..a21e19329 100644 --- a/etc/geany.profile +++ b/etc/geany.profile | |||
| @@ -7,6 +7,7 @@ include geany.local | |||
| 7 | include globals.local | 7 | include globals.local |
| 8 | 8 | ||
| 9 | noblacklist ${HOME}/.config/geany | 9 | noblacklist ${HOME}/.config/geany |
| 10 | noblacklist ${HOME}/.python-history | ||
| 10 | 11 | ||
| 11 | include disable-common.inc | 12 | include disable-common.inc |
| 12 | include disable-passwdmgr.inc | 13 | include disable-passwdmgr.inc |
diff --git a/etc/gedit.profile b/etc/gedit.profile index d537f1294..af0a3da56 100644 --- a/etc/gedit.profile +++ b/etc/gedit.profile | |||
| @@ -9,6 +9,7 @@ include globals.local | |||
| 9 | noblacklist ${HOME}/.config/enchant | 9 | noblacklist ${HOME}/.config/enchant |
| 10 | noblacklist ${HOME}/.config/gedit | 10 | noblacklist ${HOME}/.config/gedit |
| 11 | noblacklist ${HOME}/.gitconfig | 11 | noblacklist ${HOME}/.gitconfig |
| 12 | noblacklist ${HOME}/.python-history | ||
| 12 | 13 | ||
| 13 | include disable-common.inc | 14 | include disable-common.inc |
| 14 | # include disable-devel.inc | 15 | # include disable-devel.inc |
diff --git a/etc/gnome-builder.profile b/etc/gnome-builder.profile index d497440f0..05ebea80c 100644 --- a/etc/gnome-builder.profile +++ b/etc/gnome-builder.profile | |||
| @@ -8,6 +8,7 @@ include globals.local | |||
| 8 | 8 | ||
| 9 | noblacklist ${HOME}/.cargo/config | 9 | noblacklist ${HOME}/.cargo/config |
| 10 | noblacklist ${HOME}/.cargo/registry | 10 | noblacklist ${HOME}/.cargo/registry |
| 11 | noblacklist ${HOME}/.python-history | ||
| 11 | 12 | ||
| 12 | include disable-common.inc | 13 | include disable-common.inc |
| 13 | include disable-passwdmgr.inc | 14 | include disable-passwdmgr.inc |
diff --git a/etc/pycharm-community.profile b/etc/pycharm-community.profile index 32fdc750f..bb948a971 100644 --- a/etc/pycharm-community.profile +++ b/etc/pycharm-community.profile | |||
| @@ -7,6 +7,7 @@ include globals.local | |||
| 7 | 7 | ||
| 8 | noblacklist ${HOME}/snap | 8 | noblacklist ${HOME}/snap |
| 9 | noblacklist ${HOME}/.PyCharmCE* | 9 | noblacklist ${HOME}/.PyCharmCE* |
| 10 | noblacklist ${HOME}/.python-history | ||
| 10 | noblacklist ${HOME}/.java | 11 | noblacklist ${HOME}/.java |
| 11 | 12 | ||
| 12 | # Allow access to java | 13 | # Allow access to java |
diff --git a/etc/vim.profile b/etc/vim.profile index e4e759b86..55fa22a54 100644 --- a/etc/vim.profile +++ b/etc/vim.profile | |||
| @@ -6,6 +6,7 @@ include vim.local | |||
| 6 | # Persistent global definitions | 6 | # Persistent global definitions |
| 7 | include globals.local | 7 | include globals.local |
| 8 | 8 | ||
| 9 | noblacklist ${HOME}/.python-history | ||
| 9 | noblacklist ${HOME}/.vim | 10 | noblacklist ${HOME}/.vim |
| 10 | noblacklist ${HOME}/.viminfo | 11 | noblacklist ${HOME}/.viminfo |
| 11 | noblacklist ${HOME}/.vimrc | 12 | noblacklist ${HOME}/.vimrc |
diff --git a/etc/wget.profile b/etc/wget.profile index 213840726..87c0501da 100644 --- a/etc/wget.profile +++ b/etc/wget.profile | |||
| @@ -9,6 +9,7 @@ include globals.local | |||
| 9 | 9 | ||
| 10 | blacklist /tmp/.X11-unix | 10 | blacklist /tmp/.X11-unix |
| 11 | 11 | ||
| 12 | noblacklist ${HOME}/.wget-hsts | ||
| 12 | noblacklist ${HOME}/.wgetrc | 13 | noblacklist ${HOME}/.wgetrc |
| 13 | 14 | ||
| 14 | include disable-common.inc | 15 | include disable-common.inc |