Merge pull request #1 from netblue30/master

Bring fork up-to-date
author: curiosity-seeker <seeker@posteo.org> 2016-12-15 12:58:32 +0100
committer: GitHub <noreply@github.com> 2016-12-15 12:58:32 +0100
commit: d8ee390a6ca56fde4baad57dea7572c39d595809 (patch)
tree: 255252b15232086e6f65203cda676859ab4117a0 /etc/cpio.profile
parent: Update quiterss.profile (diff)
parent: added a 1 second delay after xpra server is started (diff)
download: firejail-d8ee390a6ca56fde4baad57dea7572c39d595809.tar.gz
firejail-d8ee390a6ca56fde4baad57dea7572c39d595809.tar.zst
firejail-d8ee390a6ca56fde4baad57dea7572c39d595809.zip
1 files changed, 21 insertions, 0 deletions
diff --git a/etc/cpio.profile b/etc/cpio.profile
new file mode 100644
index 000000000..519bd244c
--- /dev/null
+++ b/etc/cpio.profile
@@ -0,0 +1,21 @@
+# cpio profile
+# /sbin and /usr/sbin are visible inside the sandbox
+# /boot is not visible and /var is heavily modified 
+quiet
+noblacklist /sbin
+noblacklist /usr/sbin
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+private-dev
+seccomp
+caps.drop all
+net none
+shell none
+tracelog
+net none
+nosound
author	curiosity-seeker <seeker@posteo.org>	2016-12-15 12:58:32 +0100
committer	GitHub <noreply@github.com>	2016-12-15 12:58:32 +0100
commit	d8ee390a6ca56fde4baad57dea7572c39d595809 (patch)
tree	255252b15232086e6f65203cda676859ab4117a0 /etc/cpio.profile
parent	Update quiterss.profile (diff)
parent	added a 1 second delay after xpra server is started (diff)
download	firejail-d8ee390a6ca56fde4baad57dea7572c39d595809.tar.gz firejail-d8ee390a6ca56fde4baad57dea7572c39d595809.tar.zst firejail-d8ee390a6ca56fde4baad57dea7572c39d595809.zip

diff --git a/etc/cpio.profile b/etc/cpio.profile new file mode 100644 index 000000000..519bd244c --- /dev/null +++ b/etc/cpio.profile
@@ -0,0 +1,21 @@
	1	# cpio profile
	2	# /sbin and /usr/sbin are visible inside the sandbox
	3	# /boot is not visible and /var is heavily modified
	4	quiet
	5	noblacklist /sbin
	6	noblacklist /usr/sbin
	7	include /etc/firejail/disable-common.inc
	8	include /etc/firejail/disable-programs.inc
	9	include /etc/firejail/disable-passwdmgr.inc
	10
	11	private-dev
	12	seccomp
	13	caps.drop all
	14	net none
	15	shell none
	16	tracelog
	17	net none
	18	nosound
	19
	20
	21