aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar netblue30 <netblue30@yahoo.com>2016-04-13 08:49:08 -0400
committerLibravatar netblue30 <netblue30@yahoo.com>2016-04-13 08:49:08 -0400
commitd222023bd1ffdd92d02b6a7bbe6076b74cdb158f (patch)
tree320b859e3c2d906639307ccd0e75d54f75334556
parent--private-bin fixes (diff)
parentdelete blacklist wine from profiles (diff)
downloadfirejail-d222023bd1ffdd92d02b6a7bbe6076b74cdb158f.tar.gz
firejail-d222023bd1ffdd92d02b6a7bbe6076b74cdb158f.tar.zst
firejail-d222023bd1ffdd92d02b6a7bbe6076b74cdb158f.zip
Merge pull request #428 from avoidr/profile_cleanup
Profile cleanup
Diffstat
-rw-r--r--etc/Mathematica.profile3
-rw-r--r--etc/atril.profile3
-rw-r--r--etc/audacious.profile3
-rw-r--r--etc/cherrytree.profile2
-rw-r--r--etc/clementine.profile2
-rw-r--r--etc/deadbeef.profile5
-rw-r--r--etc/deluge.profile4
-rw-r--r--etc/disable-programs.inc59
-rw-r--r--etc/dropbox.profile3
-rw-r--r--etc/empathy.profile3
-rw-r--r--etc/epiphany.profile4
-rw-r--r--etc/evince.profile3
-rw-r--r--etc/fbreader.profile4
-rw-r--r--etc/filezilla.profile6
-rw-r--r--etc/gnome-mplayer.profile2
-rw-r--r--etc/hedgewars.profile1
-rw-r--r--etc/kmail.profile5
-rw-r--r--etc/mupen64plus.profile3
-rw-r--r--etc/pidgin.profile3
-rw-r--r--etc/qbittorrent.profile4
-rw-r--r--etc/quassel.profile3
-rw-r--r--etc/rhythmbox.profile3
-rw-r--r--etc/spotify.profile3
-rw-r--r--etc/ssh.profile4
-rw-r--r--etc/totem.profile2
-rw-r--r--etc/transmission-gtk.profile9
-rw-r--r--etc/transmission-qt.profile7
-rw-r--r--etc/uget-gtk.profile2
-rw-r--r--etc/vlc.profile3
-rw-r--r--etc/wesnoth.profile4
-rw-r--r--etc/wine.profile1
-rw-r--r--etc/xchat.profile3
32 files changed, 82 insertions, 84 deletions
diff --git a/etc/Mathematica.profile b/etc/Mathematica.profile
index 52fd62ada..05131df43 100644
--- a/etc/Mathematica.profile
+++ b/etc/Mathematica.profile
@@ -1,4 +1,7 @@
1# Mathematica profile 1# Mathematica profile
2noblacklist ${HOME}/.Mathematica
3noblacklist ${HOME}/.Wolfram Research
4
2mkdir ~/.Mathematica 5mkdir ~/.Mathematica
3whitelist ~/.Mathematica 6whitelist ~/.Mathematica
4mkdir ~/.Wolfram Research 7mkdir ~/.Wolfram Research
diff --git a/etc/atril.profile b/etc/atril.profile
index f142f50bc..e078c1d20 100644
--- a/etc/atril.profile
+++ b/etc/atril.profile
@@ -4,12 +4,9 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
12netfilter 10netfilter
13noroot 11noroot
14tracelog 12tracelog
15
diff --git a/etc/audacious.profile b/etc/audacious.profile
index 0c79d02ac..290faa260 100644
--- a/etc/audacious.profile
+++ b/etc/audacious.profile
@@ -4,10 +4,7 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
12noroot 10noroot
13
diff --git a/etc/cherrytree.profile b/etc/cherrytree.profile
index 3cc384b37..7bcc61e98 100644
--- a/etc/cherrytree.profile
+++ b/etc/cherrytree.profile
@@ -4,8 +4,6 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9whitelist ${HOME}/cherrytree 7whitelist ${HOME}/cherrytree
10mkdir ~/.config 8mkdir ~/.config
11mkdir ~/.config/cherrytree 9mkdir ~/.config/cherrytree
diff --git a/etc/clementine.profile b/etc/clementine.profile
index a02e05f9c..c6271e6e3 100644
--- a/etc/clementine.profile
+++ b/etc/clementine.profile
@@ -4,8 +4,6 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
diff --git a/etc/deadbeef.profile b/etc/deadbeef.profile
index dbf4531c4..2810e5323 100644
--- a/etc/deadbeef.profile
+++ b/etc/deadbeef.profile
@@ -1,13 +1,12 @@
1# DeaDBeeF media player profile 1# DeaDBeeF media player profile
2noblacklist ${HOME}/.config/deadbeef
3
2include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 7include /etc/firejail/disable-passwdmgr.inc
6 8
7blacklist ${HOME}/.wine
8
9caps.drop all 9caps.drop all
10seccomp 10seccomp
11protocol unix,inet,inet6 11protocol unix,inet,inet6
12noroot 12noroot
13
diff --git a/etc/deluge.profile b/etc/deluge.profile
index 9b2c65656..d8ffc8ec5 100644
--- a/etc/deluge.profile
+++ b/etc/deluge.profile
@@ -4,13 +4,9 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
12netfilter 10netfilter
13noroot 11noroot
14nosound 12nosound
15
16
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 0cd1ed123..7faf75638 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -1,10 +1,19 @@
1# various programs 1# various programs
2blacklist ${HOME}/.config/vlc
3blacklist ${HOME}/.remmina 2blacklist ${HOME}/.remmina
4blacklist ${HOME}/.tconn 3blacklist ${HOME}/.tconn
5blacklist ${HOME}/.FBReader 4blacklist ${HOME}/.FBReader
6blacklist ${HOME}/.wine 5blacklist ${HOME}/.wine
6blacklist ${HOME}/.Mathematica
7blacklist ${HOME}/.Wolfram Research
8blacklist ${HOME}/.config/mupen64plus
9blacklist ${HOME}/.config/transmission
10blacklist ${HOME}/.config/uGet
11
12# Media players
7blacklist ${HOME}/.config/cmus 13blacklist ${HOME}/.config/cmus
14blacklist ${HOME}/.config/deadbeef
15blacklist ${HOME}/.config/spotify
16blacklist ${HOME}/.config/vlc
8 17
9# HTTP / FTP / Mail 18# HTTP / FTP / Mail
10blacklist ${HOME}/.icedove 19blacklist ${HOME}/.icedove
@@ -19,20 +28,14 @@ blacklist ${HOME}/.config/google-chrome-unstable
19blacklist ${HOME}/.config/opera 28blacklist ${HOME}/.config/opera
20blacklist ${HOME}/.config/opera-beta 29blacklist ${HOME}/.config/opera-beta
21blacklist ${HOME}/.opera 30blacklist ${HOME}/.opera
22blacklist ~/.config/vivaldi 31blacklist ${HOME}/.config/vivaldi
23blacklist ${HOME}/.filezilla 32blacklist ${HOME}/.filezilla
24blacklist ${HOME}/.config/filezilla 33blacklist ${HOME}/.config/filezilla
25blacklist ~/.dillo 34blacklist ${HOME}/.dillo
26 35blacklist ${HOME}/.conkeror.mozdev.org
27# cache 36blacklist ${HOME}/.config/epiphany
28blacklist ~/.cache/mozilla 37blacklist ${HOME}/.config/slimjet
29blacklist ~/.cache/chromium 38blacklist ${HOME}/.config/qutebrowser
30blacklist ~/.cache/google-chrome
31blacklist ~/.cache/google-chrome-beta
32blacklist ~/.cache/google-chrome-unstable
33blacklist ~/.cache/opera
34blacklist ~/.cache/opera-beta
35blacklist ~/.cache/vivaldi
36 39
37# Instant Messaging 40# Instant Messaging
38blacklist ${HOME}/.config/hexchat 41blacklist ${HOME}/.config/hexchat
@@ -44,6 +47,12 @@ blacklist ${HOME}/.weechat
44blacklist ${HOME}/.config/xchat 47blacklist ${HOME}/.config/xchat
45blacklist ${HOME}/.Skype 48blacklist ${HOME}/.Skype
46blacklist ${HOME}/.config/tox 49blacklist ${HOME}/.config/tox
50blacklist ${HOME}/.TelegramDesktop
51
52# Games
53blacklist ${HOME}/.hedgewars
54blacklist ${HOME}/.steam
55blacklist ${HOME}/.config/wesnoth
47 56
48# Cryptocoins 57# Cryptocoins
49blacklist ${HOME}/.*coin 58blacklist ${HOME}/.*coin
@@ -55,3 +64,27 @@ blacklist ${HOME}/.subversion
55blacklist ${HOME}/.gitconfig 64blacklist ${HOME}/.gitconfig
56blacklist ${HOME}/.git-credential-cache 65blacklist ${HOME}/.git-credential-cache
57 66
67# cache
68blacklist ${HOME}/.cache/mozilla
69blacklist ${HOME}/.cache/chromium
70blacklist ${HOME}/.cache/google-chrome
71blacklist ${HOME}/.cache/google-chrome-beta
72blacklist ${HOME}/.cache/google-chrome-unstable
73blacklist ${HOME}/.cache/opera
74blacklist ${HOME}/.cache/opera-beta
75blacklist ${HOME}/.cache/vivaldi
76blacklist ${HOME}/.cache/epiphany
77blacklist ${HOME}/.cache/slimjet
78blacklist ${HOME}/.cache/qutebrowser
79blacklist ${HOME}/.cache/spotify
80blacklist ${HOME}/.cache/thunderbird
81blacklist ${HOME}/.cache/icedove
82blacklist ${HOME}/.cache/transmission
83blacklist ${HOME}/.cache/wesnoth
84
85# share
86blacklist ${HOME}/.local/share/epiphany
87blacklist ${HOME}/.local/share/mupen64plus
88blacklist ${HOME}/.local/share/spotify
89blacklist ${HOME}/.local/share/steam
90blacklist ${HOME}/.local/share/wesnoth
diff --git a/etc/dropbox.profile b/etc/dropbox.profile
index ea0dc1fcb..a0a944dce 100644
--- a/etc/dropbox.profile
+++ b/etc/dropbox.profile
@@ -3,10 +3,7 @@ include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 3include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-passwdmgr.inc 4include /etc/firejail/disable-passwdmgr.inc
5 5
6blacklist ${HOME}/.wine
7
8caps 6caps
9seccomp 7seccomp
10protocol unix,inet,inet6 8protocol unix,inet,inet6
11noroot 9noroot
12
diff --git a/etc/empathy.profile b/etc/empathy.profile
index 37277e3d1..789bdda08 100644
--- a/etc/empathy.profile
+++ b/etc/empathy.profile
@@ -3,10 +3,7 @@ include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 3include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5 5
6blacklist ${HOME}/.wine
7
8caps.drop all 6caps.drop all
9seccomp 7seccomp
10protocol unix,inet,inet6 8protocol unix,inet,inet6
11netfilter 9netfilter
12
diff --git a/etc/epiphany.profile b/etc/epiphany.profile
index 319d2b177..95a673bf9 100644
--- a/etc/epiphany.profile
+++ b/etc/epiphany.profile
@@ -1,4 +1,8 @@
1# Epiphany browser profile 1# Epiphany browser profile
2noblacklist ${HOME}/.config/epiphany
3noblacklist ${HOME}/.cache/epiphany
4noblacklist ${HOME}/.local/share/epiphany
5
2include /etc/firejail/disable-common.inc 6include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 7include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 8include /etc/firejail/disable-devel.inc
diff --git a/etc/evince.profile b/etc/evince.profile
index 693593713..c390dcaf3 100644
--- a/etc/evince.profile
+++ b/etc/evince.profile
@@ -4,11 +4,8 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
12noroot 10noroot
13nosound 11nosound
14
diff --git a/etc/fbreader.profile b/etc/fbreader.profile
index c45acc901..cfbae1c74 100644
--- a/etc/fbreader.profile
+++ b/etc/fbreader.profile
@@ -1,16 +1,14 @@
1# fbreader ebook reader profile 1# fbreader ebook reader profile
2noblacklist ${HOME}/.FBReader 2noblacklist ${HOME}/.FBReader
3
3include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
5include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
6include /etc/firejail/disable-passwdmgr.inc 7include /etc/firejail/disable-passwdmgr.inc
7 8
8blacklist ${HOME}/.wine
9
10caps.drop all 9caps.drop all
11seccomp 10seccomp
12protocol unix,inet,inet6 11protocol unix,inet,inet6
13netfilter 12netfilter
14noroot 13noroot
15nosound 14nosound
16
diff --git a/etc/filezilla.profile b/etc/filezilla.profile
index dc677542f..8542de284 100644
--- a/etc/filezilla.profile
+++ b/etc/filezilla.profile
@@ -1,18 +1,14 @@
1# FileZilla ftp profile 1# FileZilla ftp profile
2noblacklist ${HOME}/.filezilla 2noblacklist ${HOME}/.filezilla
3noblacklist ${HOME}/.config/filezilla 3noblacklist ${HOME}/.config/filezilla
4
4include /etc/firejail/disable-common.inc 5include /etc/firejail/disable-common.inc
5include /etc/firejail/disable-programs.inc 6include /etc/firejail/disable-programs.inc
6include /etc/firejail/disable-devel.inc 7include /etc/firejail/disable-devel.inc
7 8
8blacklist ${HOME}/.wine
9
10caps.drop all 9caps.drop all
11seccomp 10seccomp
12protocol unix,inet,inet6 11protocol unix,inet,inet6
13noroot 12noroot
14netfilter 13netfilter
15nosound 14nosound
16
17
18
diff --git a/etc/gnome-mplayer.profile b/etc/gnome-mplayer.profile
index a96b19ec3..ec3698ac8 100644
--- a/etc/gnome-mplayer.profile
+++ b/etc/gnome-mplayer.profile
@@ -4,8 +4,6 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
diff --git a/etc/hedgewars.profile b/etc/hedgewars.profile
index 53d0c2eaf..5ab7cfe72 100644
--- a/etc/hedgewars.profile
+++ b/etc/hedgewars.profile
@@ -1,4 +1,5 @@
1# whitelist profile for Hedgewars (game) 1# whitelist profile for Hedgewars (game)
2noblacklist ${HOME}/.hedgewars
2 3
3include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
diff --git a/etc/kmail.profile b/etc/kmail.profile
index 67a7b4eb1..a7079661b 100644
--- a/etc/kmail.profile
+++ b/etc/kmail.profile
@@ -1,17 +1,14 @@
1# kmail profile 1# kmail profile
2noblacklist ${HOME}/.gnupg 2noblacklist ${HOME}/.gnupg
3
3include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
5include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
6include /etc/firejail/disable-passwdmgr.inc 7include /etc/firejail/disable-passwdmgr.inc
7 8
8blacklist ${HOME}/.wine
9
10caps.drop all 9caps.drop all
11seccomp 10seccomp
12protocol unix,inet,inet6,netlink 11protocol unix,inet,inet6,netlink
13netfilter 12netfilter
14noroot 13noroot
15tracelog 14tracelog
16
17
diff --git a/etc/mupen64plus.profile b/etc/mupen64plus.profile
index 101074c24..7b38b411a 100644
--- a/etc/mupen64plus.profile
+++ b/etc/mupen64plus.profile
@@ -1,5 +1,8 @@
1# mupen64plus profile 1# mupen64plus profile
2# manually whitelist ROM files 2# manually whitelist ROM files
3noblacklist ${HOME}/.config/mupen64plus
4noblacklist ${HOME}/.local/share/mupen64plus
5
3include /etc/firejail/disable-common.inc 6include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 7include /etc/firejail/disable-programs.inc
5include /etc/firejail/disable-devel.inc 8include /etc/firejail/disable-devel.inc
diff --git a/etc/pidgin.profile b/etc/pidgin.profile
index ea5d82103..fd497f082 100644
--- a/etc/pidgin.profile
+++ b/etc/pidgin.profile
@@ -1,11 +1,10 @@
1# Pidgin profile 1# Pidgin profile
2noblacklist ${HOME}/.purple 2noblacklist ${HOME}/.purple
3
3include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
5include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
6 7
7blacklist ${HOME}/.wine
8
9caps.drop all 8caps.drop all
10seccomp 9seccomp
11protocol unix,inet,inet6 10protocol unix,inet,inet6
diff --git a/etc/qbittorrent.profile b/etc/qbittorrent.profile
index 121d08a13..8bdc745fb 100644
--- a/etc/qbittorrent.profile
+++ b/etc/qbittorrent.profile
@@ -4,13 +4,9 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
12netfilter 10netfilter
13noroot 11noroot
14nosound 12nosound
15
16
diff --git a/etc/quassel.profile b/etc/quassel.profile
index 1fba23784..72004da7f 100644
--- a/etc/quassel.profile
+++ b/etc/quassel.profile
@@ -3,11 +3,8 @@ include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 3include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5 5
6blacklist ${HOME}/.wine
7
8caps.drop all 6caps.drop all
9seccomp 7seccomp
10protocol unix,inet,inet6 8protocol unix,inet,inet6
11noroot 9noroot
12netfilter 10netfilter
13
diff --git a/etc/rhythmbox.profile b/etc/rhythmbox.profile
index a3204c5f9..782cd3832 100644
--- a/etc/rhythmbox.profile
+++ b/etc/rhythmbox.profile
@@ -4,11 +4,8 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
12noroot 10noroot
13netfilter 11netfilter
14
diff --git a/etc/spotify.profile b/etc/spotify.profile
index dfe298e1d..fd4586dd5 100644
--- a/etc/spotify.profile
+++ b/etc/spotify.profile
@@ -1,4 +1,7 @@
1# Spotify media player profile 1# Spotify media player profile
2noblacklist ${HOME}/.config/spotify
3noblacklist ${HOME}/.cache/spotify
4noblacklist ${HOME}/.local/share/spotify
2include /etc/firejail/disable-common.inc 5include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 6include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 7include /etc/firejail/disable-devel.inc
diff --git a/etc/ssh.profile b/etc/ssh.profile
index 7e105724e..7b282bde6 100644
--- a/etc/ssh.profile
+++ b/etc/ssh.profile
@@ -1,14 +1,12 @@
1# ssh client 1# ssh client
2noblacklist ~/.ssh 2noblacklist ~/.ssh
3
3include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
5include /etc/firejail/disable-passwdmgr.inc 6include /etc/firejail/disable-passwdmgr.inc
6 7
7blacklist ${HOME}/.wine
8
9caps.drop all 8caps.drop all
10seccomp 9seccomp
11protocol unix,inet,inet6 10protocol unix,inet,inet6
12netfilter 11netfilter
13noroot 12noroot
14
diff --git a/etc/totem.profile b/etc/totem.profile
index 5eeeb4402..4d87cbb85 100644
--- a/etc/totem.profile
+++ b/etc/totem.profile
@@ -4,8 +4,6 @@ include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 5include /etc/firejail/disable-passwdmgr.inc
6 6
7blacklist ${HOME}/.wine
8
9caps.drop all 7caps.drop all
10seccomp 8seccomp
11protocol unix,inet,inet6 9protocol unix,inet,inet6
diff --git a/etc/transmission-gtk.profile b/etc/transmission-gtk.profile
index 9e64c6d59..d61d36a8c 100644
--- a/etc/transmission-gtk.profile
+++ b/etc/transmission-gtk.profile
@@ -1,11 +1,12 @@
1# transmission-gtk profile 1# transmission-gtk profile
2noblacklist ${HOME}/.config/transmission
3noblacklist ${HOME}/.cache/transmission
4
2include /etc/firejail/disable-common.inc 5include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 6include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 7include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 8include /etc/firejail/disable-passwdmgr.inc
6 9
7blacklist ${HOME}/.wine
8
9caps.drop all 10caps.drop all
10seccomp 11seccomp
11protocol unix,inet,inet6 12protocol unix,inet,inet6
@@ -13,7 +14,3 @@ netfilter
13noroot 14noroot
14tracelog 15tracelog
15nosound 16nosound
16
17
18
19
diff --git a/etc/transmission-qt.profile b/etc/transmission-qt.profile
index 1059ad3ee..3db7a5452 100644
--- a/etc/transmission-qt.profile
+++ b/etc/transmission-qt.profile
@@ -1,11 +1,12 @@
1# transmission-qt profile 1# transmission-qt profile
2noblacklist ${HOME}/.config/transmission
3noblacklist ${HOME}/.cache/transmission
4
2include /etc/firejail/disable-common.inc 5include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 6include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 7include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc 8include /etc/firejail/disable-passwdmgr.inc
6 9
7blacklist ${HOME}/.wine
8
9caps.drop all 10caps.drop all
10seccomp 11seccomp
11protocol unix,inet,inet6 12protocol unix,inet,inet6
@@ -13,5 +14,3 @@ netfilter
13noroot 14noroot
14tracelog 15tracelog
15nosound 16nosound
16
17
diff --git a/etc/uget-gtk.profile b/etc/uget-gtk.profile
index 6593075c8..ef5aa7d4a 100644
--- a/etc/uget-gtk.profile
+++ b/etc/uget-gtk.profile
@@ -1,4 +1,6 @@
1# uGet profile 1# uGet profile
2noblacklist ${HOME}/.config/uGet
3
2include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
diff --git a/etc/vlc.profile b/etc/vlc.profile
index 0a7469339..061ae6f78 100644
--- a/etc/vlc.profile
+++ b/etc/vlc.profile
@@ -1,12 +1,11 @@
1# VLC media player profile 1# VLC media player profile
2noblacklist ${HOME}/.config/vlc 2noblacklist ${HOME}/.config/vlc
3
3include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
5include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
6include /etc/firejail/disable-passwdmgr.inc 7include /etc/firejail/disable-passwdmgr.inc
7 8
8blacklist ${HOME}/.wine
9
10caps.drop all 9caps.drop all
11seccomp 10seccomp
12protocol unix,inet,inet6 11protocol unix,inet,inet6
diff --git a/etc/wesnoth.profile b/etc/wesnoth.profile
index 24b245b6c..340ba0db5 100644
--- a/etc/wesnoth.profile
+++ b/etc/wesnoth.profile
@@ -1,4 +1,8 @@
1# Whitelist-based profile for "Battle for Wesnoth" (game). 1# Whitelist-based profile for "Battle for Wesnoth" (game).
2noblacklist ${HOME}/.config/wesnoth
3noblacklist ${HOME}/.cache/wesnoth
4noblacklist ${HOME}/.local/share/wesnoth
5
2include /etc/firejail/disable-common.inc 6include /etc/firejail/disable-common.inc
3include /etc/firejail/disable-programs.inc 7include /etc/firejail/disable-programs.inc
4include /etc/firejail/disable-devel.inc 8include /etc/firejail/disable-devel.inc
diff --git a/etc/wine.profile b/etc/wine.profile
index f93fa6dc2..ea6db8511 100644
--- a/etc/wine.profile
+++ b/etc/wine.profile
@@ -2,6 +2,7 @@
2noblacklist ${HOME}/.steam 2noblacklist ${HOME}/.steam
3noblacklist ${HOME}/.local/share/steam 3noblacklist ${HOME}/.local/share/steam
4noblacklist ${HOME}/.wine 4noblacklist ${HOME}/.wine
5
5include /etc/firejail/disable-common.inc 6include /etc/firejail/disable-common.inc
6include /etc/firejail/disable-programs.inc 7include /etc/firejail/disable-programs.inc
7include /etc/firejail/disable-devel.inc 8include /etc/firejail/disable-devel.inc
diff --git a/etc/xchat.profile b/etc/xchat.profile
index 7c11ba76c..fcea4245e 100644
--- a/etc/xchat.profile
+++ b/etc/xchat.profile
@@ -1,11 +1,10 @@
1# XChat IRC profile 1# XChat IRC profile
2noblacklist ${HOME}/.config/xchat 2noblacklist ${HOME}/.config/xchat
3
3include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
5include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
6 7
7blacklist ${HOME}/.wine
8
9caps.drop all 8caps.drop all
10seccomp 9seccomp
11protocol unix,inet,inet6 10protocol unix,inet,inet6
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-21 04:09:00 +0000