Merge branch 'master' of https://github.com/Lockdis/firejail into lockdis_ipc_fixes

author: Fred-Barclay <Fred-Barclay@users.noreply.github.com> 2019-02-16 10:34:54 -0600
committer: Fred-Barclay <Fred-Barclay@users.noreply.github.com> 2019-02-16 10:34:54 -0600
commit: 6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2 (patch)
tree: 69c136de5dd79c05c9704c8be381bd89c5418f5d /etc/crow.profile
parent: Merge pull request #2402 from glitsj16/snap (diff)
parent: Update nyx.profile, crow.profile (diff)
download: firejail-6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2.tar.gz
firejail-6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2.tar.zst
firejail-6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2.zip
1 files changed, 47 insertions, 0 deletions
diff --git a/etc/crow.profile b/etc/crow.profile
new file mode 100644
index 000000000..a8a00f596
--- /dev/null
+++ b/etc/crow.profile
@@ -0,0 +1,47 @@
+# Firejail profile for crow
+# Description: A translator that allows to translate and say selected text using Google, Yandex and Bing translate API
+# This file is overwritten after every install/update
+# Persistent local customizations
+include crow.local
+# Persistent global definitions
+include globals.local
+mkdir ${HOME}/.config/crow
+mkdir ${HOME}/.cache/gstreamer-1.0
+whitelist ${HOME}/.config/crow
+whitelist ${HOME}/.cache/gstreamer-1.0
+include disable-common.inc
+include disable-devel.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+include whitelist-common.inc
+caps.drop all
+ipc-namespace
+netfilter
+no3d
+nodvd
+nogroups
+nonewprivs
+noroot
+notv
+nou2f
+novideo
+protocol unix,inet,inet6,netlink
+seccomp
+shell none
+disable-mnt
+private-bin crow
+private-dev
+private-etc ca-certificates,ssl,machine-id,dconf,nsswitch.conf,resolv.conf,fonts,asound.conf,pulse,pki,crypto-policies
+private-opt none
+private-tmp
+private-srv none
+noexec ${HOME}
+noexec /tmp
author	Fred-Barclay <Fred-Barclay@users.noreply.github.com>	2019-02-16 10:34:54 -0600
committer	Fred-Barclay <Fred-Barclay@users.noreply.github.com>	2019-02-16 10:34:54 -0600
commit	6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2 (patch)
tree	69c136de5dd79c05c9704c8be381bd89c5418f5d /etc/crow.profile
parent	Merge pull request #2402 from glitsj16/snap (diff)
parent	Update nyx.profile, crow.profile (diff)
download	firejail-6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2.tar.gz firejail-6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2.tar.zst firejail-6ea7c5bc4fc6e44c475ea59fb76b79fa150407c2.zip

diff --git a/etc/crow.profile b/etc/crow.profile new file mode 100644 index 000000000..a8a00f596 --- /dev/null +++ b/etc/crow.profile
@@ -0,0 +1,47 @@
	1	# Firejail profile for crow
	2	# Description: A translator that allows to translate and say selected text using Google, Yandex and Bing translate API
	3	# This file is overwritten after every install/update
	4	# Persistent local customizations
	5	include crow.local
	6	# Persistent global definitions
	7	include globals.local
	8
	9	mkdir ${HOME}/.config/crow
	10	mkdir ${HOME}/.cache/gstreamer-1.0
	11	whitelist ${HOME}/.config/crow
	12	whitelist ${HOME}/.cache/gstreamer-1.0
	13
	14	include disable-common.inc
	15	include disable-devel.inc
	16	include disable-interpreters.inc
	17	include disable-passwdmgr.inc
	18	include disable-programs.inc
	19	include disable-xdg.inc
	20
	21	include whitelist-common.inc
	22
	23	caps.drop all
	24	ipc-namespace
	25	netfilter
	26	no3d
	27	nodvd
	28	nogroups
	29	nonewprivs
	30	noroot
	31	notv
	32	nou2f
	33	novideo
	34	protocol unix,inet,inet6,netlink
	35	seccomp
	36	shell none
	37
	38	disable-mnt
	39	private-bin crow
	40	private-dev
	41	private-etc ca-certificates,ssl,machine-id,dconf,nsswitch.conf,resolv.conf,fonts,asound.conf,pulse,pki,crypto-policies
	42	private-opt none
	43	private-tmp
	44	private-srv none
	45
	46	noexec ${HOME}
	47	noexec /tmp