merge 0.9.56-rc1

author: startx2017 <vradu.startx@yandex.com> 2018-08-14 08:04:40 -0400
committer: startx2017 <vradu.startx@yandex.com> 2018-08-14 08:04:40 -0400
commit: 327d3d815db6619cc81fa6858a8ca8667189f7b7 (patch)
tree: e6e3a70e1a876113afdbd5154c6bc7b215cb6ef8 /etc/electrum.profile
parent: phase1 (diff)
download: firejail-327d3d815db6619cc81fa6858a8ca8667189f7b7.tar.gz
firejail-327d3d815db6619cc81fa6858a8ca8667189f7b7.tar.zst
firejail-327d3d815db6619cc81fa6858a8ca8667189f7b7.zip
1 files changed, 52 insertions, 0 deletions
diff --git a/etc/electrum.profile b/etc/electrum.profile
new file mode 100644
index 000000000..d611f3e61
--- /dev/null
+++ b/etc/electrum.profile
@@ -0,0 +1,52 @@
+# Firejail profile for electrum
+# This file is overwritten after every install/update
+# Persistent local customizations
+include /etc/firejail/electrum.local
+# Persistent global definitions
+include /etc/firejail/globals.local
+noblacklist ${HOME}/.electrum
+# Allow python (blacklisted by disable-interpreters.inc)
+noblacklist ${PATH}/python2*
+noblacklist ${PATH}/python3*
+noblacklist /usr/lib/python2*
+noblacklist /usr/lib/python3*
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-interpreters.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-xdg.inc
+mkdir ${HOME}/.electrum
+whitelist ${HOME}/.electrum
+include /etc/firejail/whitelist-common.inc
+include /etc/firejail/whitelist-var-common.inc
+caps.drop all
+ipc-namespace
+netfilter
+no3d
+#nodbus
+nodvd
+nogroups
+nonewprivs
+noroot
+nosound
+notv
+novideo
+protocol unix,inet,inet6
+seccomp
+shell none
+disable-mnt
+private-bin electrum,python*
+private-cache
+private-dev
+private-etc fonts,dconf,ca-certificates,ssl,pki,crypto-policies,machine-id
+private-tmp
+noexec ${HOME}
+noexec /tmp
author	startx2017 <vradu.startx@yandex.com>	2018-08-14 08:04:40 -0400
committer	startx2017 <vradu.startx@yandex.com>	2018-08-14 08:04:40 -0400
commit	327d3d815db6619cc81fa6858a8ca8667189f7b7 (patch)
tree	e6e3a70e1a876113afdbd5154c6bc7b215cb6ef8 /etc/electrum.profile
parent	phase1 (diff)
download	firejail-327d3d815db6619cc81fa6858a8ca8667189f7b7.tar.gz firejail-327d3d815db6619cc81fa6858a8ca8667189f7b7.tar.zst firejail-327d3d815db6619cc81fa6858a8ca8667189f7b7.zip

diff --git a/etc/electrum.profile b/etc/electrum.profile new file mode 100644 index 000000000..d611f3e61 --- /dev/null +++ b/etc/electrum.profile
@@ -0,0 +1,52 @@
	1	# Firejail profile for electrum
	2	# This file is overwritten after every install/update
	3	# Persistent local customizations
	4	include /etc/firejail/electrum.local
	5	# Persistent global definitions
	6	include /etc/firejail/globals.local
	7
	8	noblacklist ${HOME}/.electrum
	9
	10	# Allow python (blacklisted by disable-interpreters.inc)
	11	noblacklist ${PATH}/python2*
	12	noblacklist ${PATH}/python3*
	13	noblacklist /usr/lib/python2*
	14	noblacklist /usr/lib/python3*
	15
	16	include /etc/firejail/disable-common.inc
	17	include /etc/firejail/disable-devel.inc
	18	include /etc/firejail/disable-interpreters.inc
	19	include /etc/firejail/disable-passwdmgr.inc
	20	include /etc/firejail/disable-programs.inc
	21	include /etc/firejail/disable-xdg.inc
	22
	23	mkdir ${HOME}/.electrum
	24	whitelist ${HOME}/.electrum
	25	include /etc/firejail/whitelist-common.inc
	26	include /etc/firejail/whitelist-var-common.inc
	27
	28	caps.drop all
	29	ipc-namespace
	30	netfilter
	31	no3d
	32	#nodbus
	33	nodvd
	34	nogroups
	35	nonewprivs
	36	noroot
	37	nosound
	38	notv
	39	novideo
	40	protocol unix,inet,inet6
	41	seccomp
	42	shell none
	43
	44	disable-mnt
	45	private-bin electrum,python*
	46	private-cache
	47	private-dev
	48	private-etc fonts,dconf,ca-certificates,ssl,pki,crypto-policies,machine-id
	49	private-tmp
	50
	51	noexec ${HOME}
	52	noexec /tmp