Unify all profiles

author: Tad <tad@spotco.us> 2017-08-07 01:22:08 -0400
committer: Tad <tad@spotco.us> 2017-08-07 01:22:08 -0400
commit: 9e3ba319be6b9546d7e8f450ca419ee2f3f4040b (patch)
tree: 0aebe82de78a61877c267f4dcb2ebcc13a2e37c9 /etc/geeqie.profile
parent: various profile fixes (#1433) (diff)
download: firejail-9e3ba319be6b9546d7e8f450ca419ee2f3f4040b.tar.gz
firejail-9e3ba319be6b9546d7e8f450ca419ee2f3f4040b.tar.zst
firejail-9e3ba319be6b9546d7e8f450ca419ee2f3f4040b.zip
1 files changed, 14 insertions, 13 deletions
diff --git a/etc/geeqie.profile b/etc/geeqie.profile
index 194b76674..9434d49b8 100644
--- a/etc/geeqie.profile
+++ b/etc/geeqie.profile
@@ -1,30 +1,31 @@
-# Persistent global definitions go here
+# Firejail profile for geeqie
-include /etc/firejail/globals.local
+# This file is overwritten after every install/update
+# Persistent local customizations
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
 include /etc/firejail/geeqie.local
+# Persistent global definitions
+include /etc/firejail/globals.local
-# Firejail profile for Geeqie
+noblacklist ~/.cache/geeqie
 noblacklist ~/.config/geeqie
 noblacklist ~/.local/share/geeqie
-noblacklist ~/.cache/geeqie
 include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-devel.inc
 include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
 caps.drop all
 nogroups
 nonewprivs
 noroot
+nosound
 protocol unix
 seccomp
-nosound
+shell none
+# private-bin geeqie
 private-dev
+# private-etc X11
-#Experimental:
+# CLOBBERED COMMENTS
-shell none
+# Experimental:
-#private-bin geeqie
-#private-etc X11
author	Tad <tad@spotco.us>	2017-08-07 01:22:08 -0400
committer	Tad <tad@spotco.us>	2017-08-07 01:22:08 -0400
commit	9e3ba319be6b9546d7e8f450ca419ee2f3f4040b (patch)
tree	0aebe82de78a61877c267f4dcb2ebcc13a2e37c9 /etc/geeqie.profile
parent	various profile fixes (#1433) (diff)
download	firejail-9e3ba319be6b9546d7e8f450ca419ee2f3f4040b.tar.gz firejail-9e3ba319be6b9546d7e8f450ca419ee2f3f4040b.tar.zst firejail-9e3ba319be6b9546d7e8f450ca419ee2f3f4040b.zip

diff --git a/etc/geeqie.profile b/etc/geeqie.profile index 194b76674..9434d49b8 100644 --- a/etc/geeqie.profile +++ b/etc/geeqie.profile
@@ -1,30 +1,31 @@
1	# Persistent global definitions go here	1	# Firejail profile for geeqie
2	include /etc/firejail/globals.local	2	# This file is overwritten after every install/update
3		3	# Persistent local customizations
4	# This file is overwritten during software install.
5	# Persistent customizations should go in a .local file.
6	include /etc/firejail/geeqie.local	4	include /etc/firejail/geeqie.local
		5	# Persistent global definitions
		6	include /etc/firejail/globals.local
7		7
8	# Firejail profile for Geeqie	8	noblacklist ~/.cache/geeqie
9	noblacklist ~/.config/geeqie	9	noblacklist ~/.config/geeqie
10	noblacklist ~/.local/share/geeqie	10	noblacklist ~/.local/share/geeqie
11	noblacklist ~/.cache/geeqie	11
12	include /etc/firejail/disable-common.inc	12	include /etc/firejail/disable-common.inc
13	include /etc/firejail/disable-programs.inc
14	include /etc/firejail/disable-devel.inc	13	include /etc/firejail/disable-devel.inc
15	include /etc/firejail/disable-passwdmgr.inc	14	include /etc/firejail/disable-passwdmgr.inc
		15	include /etc/firejail/disable-programs.inc
16		16
17	caps.drop all	17	caps.drop all
18	nogroups	18	nogroups
19	nonewprivs	19	nonewprivs
20	noroot	20	noroot
		21	nosound
21	protocol unix	22	protocol unix
22	seccomp	23	seccomp
23	nosound	24	shell none
24		25
		26	# private-bin geeqie
25	private-dev	27	private-dev
		28	# private-etc X11
26		29
27	#Experimental:	30	# CLOBBERED COMMENTS
28	shell none	31	# Experimental:
29	#private-bin geeqie
30	#private-etc X11