diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2020-01-18 11:03:32 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2020-01-18 11:03:32 +0000 |
commit | e8a5e0d3302547c40df2eb7b40a746f5ced3c10e (patch) | |
tree | c63d48704132b12df09cff047a0a8ef00bd6cf5c /etc/claws-mail.profile | |
parent | Merge pull request #3161 from rusty-snake/bl-wayland (diff) | |
download | firejail-e8a5e0d3302547c40df2eb7b40a746f5ced3c10e.tar.gz firejail-e8a5e0d3302547c40df2eb7b40a746f5ced3c10e.tar.zst firejail-e8a5e0d3302547c40df2eb7b40a746f5ced3c10e.zip |
refactor claws-mail and sylpheed as whitelist profiles (#3162)
* refactor claws-mail as whitelist profile
* refactor sylpheed as whitelist profile
* Create email-common.profile
* safeguard ${DOCUMENTS}
* Add disable-xdg to email-common.profile
Thanks @rusty-snake for the review.
Diffstat (limited to 'etc/claws-mail.profile')
-rw-r--r-- | etc/claws-mail.profile | 43 |
1 files changed, 4 insertions, 39 deletions
diff --git a/etc/claws-mail.profile b/etc/claws-mail.profile index 44124f4a3..a1c44c91d 100644 --- a/etc/claws-mail.profile +++ b/etc/claws-mail.profile | |||
@@ -7,46 +7,11 @@ include claws-mail.local | |||
7 | include globals.local | 7 | include globals.local |
8 | 8 | ||
9 | noblacklist ${HOME}/.claws-mail | 9 | noblacklist ${HOME}/.claws-mail |
10 | noblacklist ${HOME}/.gnupg | ||
11 | noblacklist ${HOME}/.signature | ||
12 | # when storing mail outside the default ${HOME}/Mail path, 'noblacklist' the custom path in your claws-mail.local | ||
13 | # and 'blacklist' it in your disable-common.local too so it is kept hidden from other applications | ||
14 | noblacklist ${HOME}/Mail | ||
15 | 10 | ||
16 | noblacklist ${DOCUMENTS} | 11 | mkdir ${HOME}/.claws-mail |
17 | include disable-common.inc | 12 | whitelist ${HOME}/.claws-mail |
18 | include disable-devel.inc | ||
19 | include disable-exec.inc | ||
20 | include disable-interpreters.inc | ||
21 | include disable-passwdmgr.inc | ||
22 | include disable-programs.inc | ||
23 | include disable-xdg.inc | ||
24 | 13 | ||
25 | whitelist /usr/share/doc/claws-mail | 14 | whitelist /usr/share/doc/claws-mail |
26 | whitelist /usr/share/gnupg | ||
27 | whitelist /usr/share/gnupg2 | ||
28 | include whitelist-usr-share-common.inc | ||
29 | 15 | ||
30 | caps.drop all | 16 | # Redirect |
31 | netfilter | 17 | include email-common.profile \ No newline at end of file |
32 | no3d | ||
33 | nodvd | ||
34 | nogroups | ||
35 | nonewprivs | ||
36 | noroot | ||
37 | nosound | ||
38 | notv | ||
39 | nou2f | ||
40 | novideo | ||
41 | protocol unix,inet,inet6 | ||
42 | seccomp | ||
43 | shell none | ||
44 | |||
45 | private-cache | ||
46 | private-dev | ||
47 | private-tmp | ||
48 | |||
49 | # If you want to read local mail stored in /var/mail, add the following to claws-mail.local: | ||
50 | # noblacklist /var/mail | ||
51 | # noblacklist /var/spool/mail | ||
52 | # writable-var | ||