diff options
author | Vasya Novikov <n1dr+cm3513git@ya.ru> | 2016-03-02 22:28:56 +0300 |
---|---|---|
committer | Vasya Novikov <n1dr+cm3513git@ya.ru> | 2016-03-02 22:28:56 +0300 |
commit | c34312176b7aa77f09598da56809e7156af3c860 (patch) | |
tree | 4aadfd64182cd28676e5f850f8daffe9d80b7a19 /etc/hedgewars.profile | |
parent | debugging (diff) | |
download | firejail-c34312176b7aa77f09598da56809e7156af3c860.tar.gz firejail-c34312176b7aa77f09598da56809e7156af3c860.tar.zst firejail-c34312176b7aa77f09598da56809e7156af3c860.zip |
add hedgewars profile (whitelist)
Diffstat (limited to 'etc/hedgewars.profile')
-rw-r--r-- | etc/hedgewars.profile | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/etc/hedgewars.profile b/etc/hedgewars.profile new file mode 100644 index 000000000..03a376e2f --- /dev/null +++ b/etc/hedgewars.profile | |||
@@ -0,0 +1,17 @@ | |||
1 | # whitelist profile for Hedgewars (game) | ||
2 | |||
3 | include /etc/firejail/disable-common.inc | ||
4 | include /etc/firejail/disable-devel.inc | ||
5 | include /etc/firejail/disable-mgmt.inc | ||
6 | include /etc/firejail/disable-secret.inc | ||
7 | include /etc/firejail/disable-terminals.inc | ||
8 | |||
9 | caps.drop all | ||
10 | noroot | ||
11 | private-dev | ||
12 | whitelist /tmp/.X11-unix | ||
13 | seccomp | ||
14 | tracelog | ||
15 | |||
16 | mkdir ~/.hedgewars | ||
17 | whitelist ~/.hedgewars | ||