diff options
author | netblue30 <netblue30@yahoo.com> | 2020-04-21 08:24:28 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2020-04-21 08:24:28 -0400 |
commit | 018d75775eab4a0f045949a9d069c57686ca2686 (patch) | |
tree | aac3a1a65cca0d4875795c55109a5c3e35efdefb /etc/inc | |
parent | small fixes (diff) | |
download | firejail-018d75775eab4a0f045949a9d069c57686ca2686.tar.gz firejail-018d75775eab4a0f045949a9d069c57686ca2686.tar.zst firejail-018d75775eab4a0f045949a9d069c57686ca2686.zip |
reorganize github etc directory
Diffstat (limited to 'etc/inc')
-rw-r--r-- | etc/inc/allow-common-devel.inc | 21 | ||||
-rw-r--r-- | etc/inc/allow-gjs.inc | 11 | ||||
-rw-r--r-- | etc/inc/allow-java.inc | 9 | ||||
-rw-r--r-- | etc/inc/allow-lua.inc | 10 | ||||
-rw-r--r-- | etc/inc/allow-perl.inc | 11 | ||||
-rw-r--r-- | etc/inc/allow-php.inc | 7 | ||||
-rw-r--r-- | etc/inc/allow-python2.inc | 9 | ||||
-rw-r--r-- | etc/inc/allow-python3.inc | 10 | ||||
-rw-r--r-- | etc/inc/allow-ruby.inc | 6 | ||||
-rw-r--r-- | etc/inc/disable-common.inc | 497 | ||||
-rw-r--r-- | etc/inc/disable-devel.inc | 68 | ||||
-rw-r--r-- | etc/inc/disable-exec.inc | 11 | ||||
-rw-r--r-- | etc/inc/disable-interpreters.inc | 64 | ||||
-rw-r--r-- | etc/inc/disable-passwdmgr.inc | 18 | ||||
-rw-r--r-- | etc/inc/disable-programs.inc | 877 | ||||
-rw-r--r-- | etc/inc/disable-xdg.inc | 12 | ||||
-rw-r--r-- | etc/inc/feh-network.inc | 4 | ||||
-rw-r--r-- | etc/inc/firefox-common-addons.inc | 69 | ||||
-rw-r--r-- | etc/inc/softmaker-common.inc | 50 | ||||
-rw-r--r-- | etc/inc/whitelist-common.inc | 76 | ||||
-rw-r--r-- | etc/inc/whitelist-runuser-common.inc | 11 | ||||
-rw-r--r-- | etc/inc/whitelist-usr-share-common.inc | 61 | ||||
-rw-r--r-- | etc/inc/whitelist-var-common.inc | 11 |
23 files changed, 1923 insertions, 0 deletions
diff --git a/etc/inc/allow-common-devel.inc b/etc/inc/allow-common-devel.inc new file mode 100644 index 000000000..63174eda6 --- /dev/null +++ b/etc/inc/allow-common-devel.inc | |||
@@ -0,0 +1,21 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-common-devel.local | ||
4 | |||
5 | # Git | ||
6 | noblacklist ${HOME}/.config/git | ||
7 | noblacklist ${HOME}/.gitconfig | ||
8 | noblacklist ${HOME}/.git-credentials | ||
9 | |||
10 | # Java | ||
11 | noblacklist ${HOME}/.gradle | ||
12 | noblacklist ${HOME}/.java | ||
13 | |||
14 | # Python | ||
15 | noblacklist ${HOME}/.python-history | ||
16 | noblacklist ${HOME}/.python_history | ||
17 | noblacklist ${HOME}/.pythonhist | ||
18 | |||
19 | # Rust | ||
20 | noblacklist ${HOME}/.cargo/config | ||
21 | noblacklist ${HOME}/.cargo/registry | ||
diff --git a/etc/inc/allow-gjs.inc b/etc/inc/allow-gjs.inc new file mode 100644 index 000000000..f4f9926cd --- /dev/null +++ b/etc/inc/allow-gjs.inc | |||
@@ -0,0 +1,11 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-gjs.local | ||
4 | |||
5 | noblacklist ${PATH}/gjs | ||
6 | noblacklist ${PATH}/gjs-console | ||
7 | noblacklist /usr/lib/gjs | ||
8 | noblacklist /usr/lib64/gjs | ||
9 | noblacklist /usr/lib/libgjs* | ||
10 | noblacklist /usr/lib64/libgjs* | ||
11 | noblacklist /usr/lib64/libmozjs-* | ||
diff --git a/etc/inc/allow-java.inc b/etc/inc/allow-java.inc new file mode 100644 index 000000000..24d18fb77 --- /dev/null +++ b/etc/inc/allow-java.inc | |||
@@ -0,0 +1,9 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-java.local | ||
4 | |||
5 | noblacklist ${HOME}/.java | ||
6 | noblacklist ${PATH}/java | ||
7 | noblacklist /etc/java | ||
8 | noblacklist /usr/lib/java | ||
9 | noblacklist /usr/share/java | ||
diff --git a/etc/inc/allow-lua.inc b/etc/inc/allow-lua.inc new file mode 100644 index 000000000..9df8e8d32 --- /dev/null +++ b/etc/inc/allow-lua.inc | |||
@@ -0,0 +1,10 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-lua.local | ||
4 | |||
5 | noblacklist ${PATH}/lua* | ||
6 | noblacklist /usr/include | ||
7 | noblacklist /usr/lib/liblua* | ||
8 | noblacklist /usr/lib/lua | ||
9 | noblacklist /usr/share/lua | ||
10 | noblacklist /usr/share/lua* | ||
diff --git a/etc/inc/allow-perl.inc b/etc/inc/allow-perl.inc new file mode 100644 index 000000000..f44e1e3cc --- /dev/null +++ b/etc/inc/allow-perl.inc | |||
@@ -0,0 +1,11 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-perl.local | ||
4 | |||
5 | noblacklist ${PATH}/core_perl | ||
6 | noblacklist ${PATH}/cpan* | ||
7 | noblacklist ${PATH}/perl | ||
8 | noblacklist ${PATH}/site_perl | ||
9 | noblacklist ${PATH}/vendor_perl | ||
10 | noblacklist /usr/lib/perl* | ||
11 | noblacklist /usr/share/perl* | ||
diff --git a/etc/inc/allow-php.inc b/etc/inc/allow-php.inc new file mode 100644 index 000000000..a0950dc26 --- /dev/null +++ b/etc/inc/allow-php.inc | |||
@@ -0,0 +1,7 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-php.local | ||
4 | |||
5 | noblacklist ${PATH}/php* | ||
6 | noblacklist /usr/lib/php* | ||
7 | noblacklist /usr/share/php* | ||
diff --git a/etc/inc/allow-python2.inc b/etc/inc/allow-python2.inc new file mode 100644 index 000000000..b0525e2e1 --- /dev/null +++ b/etc/inc/allow-python2.inc | |||
@@ -0,0 +1,9 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-python2.local | ||
4 | |||
5 | noblacklist ${PATH}/python2* | ||
6 | noblacklist /usr/include/python2* | ||
7 | noblacklist /usr/lib/python2* | ||
8 | noblacklist /usr/local/lib/python2* | ||
9 | noblacklist /usr/share/python2* | ||
diff --git a/etc/inc/allow-python3.inc b/etc/inc/allow-python3.inc new file mode 100644 index 000000000..d968886b0 --- /dev/null +++ b/etc/inc/allow-python3.inc | |||
@@ -0,0 +1,10 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-python3.local | ||
4 | |||
5 | noblacklist ${PATH}/python3* | ||
6 | noblacklist /usr/include/python3* | ||
7 | noblacklist /usr/lib/python3* | ||
8 | noblacklist /usr/lib64/python3* | ||
9 | noblacklist /usr/local/lib/python3* | ||
10 | noblacklist /usr/share/python3* | ||
diff --git a/etc/inc/allow-ruby.inc b/etc/inc/allow-ruby.inc new file mode 100644 index 000000000..a8c701219 --- /dev/null +++ b/etc/inc/allow-ruby.inc | |||
@@ -0,0 +1,6 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include allow-ruby.local | ||
4 | |||
5 | noblacklist ${PATH}/ruby | ||
6 | noblacklist /usr/lib/ruby | ||
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc new file mode 100644 index 000000000..92c6cd2a8 --- /dev/null +++ b/etc/inc/disable-common.inc | |||
@@ -0,0 +1,497 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-common.local | ||
4 | |||
5 | # The following block breaks trash functionality in file managers | ||
6 | #read-only ${HOME}/.local | ||
7 | #read-write ${HOME}/.local/share | ||
8 | blacklist ${HOME}/.local/share/Trash | ||
9 | |||
10 | # History files in $HOME and clipboard managers | ||
11 | blacklist-nolog ${HOME}/.*_history | ||
12 | blacklist-nolog ${HOME}/.adobe | ||
13 | blacklist-nolog ${HOME}/.cache/greenclip* | ||
14 | blacklist-nolog ${HOME}/.histfile | ||
15 | blacklist-nolog ${HOME}/.history | ||
16 | blacklist-nolog ${HOME}/.kde/share/apps/klipper | ||
17 | blacklist-nolog ${HOME}/.kde4/share/apps/klipper | ||
18 | blacklist-nolog ${HOME}/.local/share/fish/fish_history | ||
19 | blacklist-nolog ${HOME}/.local/share/klipper | ||
20 | blacklist-nolog ${HOME}/.macromedia | ||
21 | blacklist-nolog ${HOME}/.mupdf.history | ||
22 | blacklist-nolog ${HOME}/.python-history | ||
23 | blacklist-nolog ${HOME}/.python_history | ||
24 | blacklist-nolog ${HOME}/.pythonhist | ||
25 | blacklist-nolog ${HOME}/.lesshst | ||
26 | blacklist-nolog ${HOME}/.viminfo | ||
27 | blacklist-nolog /tmp/clipmenu* | ||
28 | |||
29 | # X11 session autostart | ||
30 | # blacklist ${HOME}/.xpra - this will kill --x11=xpra cmdline option for all programs | ||
31 | blacklist ${HOME}/.Xsession | ||
32 | blacklist ${HOME}/.blackbox | ||
33 | blacklist ${HOME}/.config/autostart | ||
34 | blacklist ${HOME}/.config/autostart-scripts | ||
35 | blacklist ${HOME}/.config/awesome | ||
36 | blacklist ${HOME}/.config/i3 | ||
37 | blacklist ${HOME}/.config/lxsession/LXDE/autostart | ||
38 | blacklist ${HOME}/.config/openbox | ||
39 | blacklist ${HOME}/.config/plasma-workspace | ||
40 | blacklist ${HOME}/.config/startupconfig | ||
41 | blacklist ${HOME}/.config/startupconfigkeys | ||
42 | blacklist ${HOME}/.fluxbox | ||
43 | blacklist ${HOME}/.gnomerc | ||
44 | blacklist ${HOME}/.kde/Autostart | ||
45 | blacklist ${HOME}/.kde/env | ||
46 | blacklist ${HOME}/.kde/share/autostart | ||
47 | blacklist ${HOME}/.kde/share/config/startupconfig | ||
48 | blacklist ${HOME}/.kde/share/config/startupconfigkeys | ||
49 | blacklist ${HOME}/.kde/shutdown | ||
50 | blacklist ${HOME}/.kde4/env | ||
51 | blacklist ${HOME}/.kde4/Autostart | ||
52 | blacklist ${HOME}/.kde4/share/autostart | ||
53 | blacklist ${HOME}/.kde4/shutdown | ||
54 | blacklist ${HOME}/.kde4/share/config/startupconfig | ||
55 | blacklist ${HOME}/.kde4/share/config/startupconfigkeys | ||
56 | blacklist ${HOME}/.local/share/autostart | ||
57 | blacklist ${HOME}/.xinitrc | ||
58 | blacklist ${HOME}/.xprofile | ||
59 | blacklist ${HOME}/.xserverrc | ||
60 | blacklist ${HOME}/.xsession | ||
61 | blacklist ${HOME}/.xsessionrc | ||
62 | blacklist /etc/X11/Xsession.d | ||
63 | blacklist /etc/xdg/autostart | ||
64 | read-only ${HOME}/.Xauthority | ||
65 | |||
66 | # Session manager | ||
67 | ?HAS_X11: blacklist ${HOME}/.ICEauthority | ||
68 | ?HAS_X11: blacklist /tmp/.ICE-unix | ||
69 | |||
70 | # KDE config | ||
71 | blacklist ${HOME}/.config/khotkeysrc | ||
72 | blacklist ${HOME}/.config/krunnerrc | ||
73 | blacklist ${HOME}/.config/kscreenlockerrc | ||
74 | blacklist ${HOME}/.config/ksslcertificatemanager | ||
75 | blacklist ${HOME}/.config/kwalletrc | ||
76 | blacklist ${HOME}/.config/kwinrc | ||
77 | blacklist ${HOME}/.config/kwinrulesrc | ||
78 | blacklist ${HOME}/.config/plasma-org.kde.plasma.desktop-appletsrc | ||
79 | blacklist ${HOME}/.config/plasmashellrc | ||
80 | blacklist ${HOME}/.config/plasmavaultrc | ||
81 | blacklist ${HOME}/.kde/share/apps/kwin | ||
82 | blacklist ${HOME}/.kde/share/apps/plasma | ||
83 | blacklist ${HOME}/.kde/share/apps/solid | ||
84 | blacklist ${HOME}/.kde/share/config/khotkeysrc | ||
85 | blacklist ${HOME}/.kde/share/config/krunnerrc | ||
86 | blacklist ${HOME}/.kde/share/config/kscreensaverrc | ||
87 | blacklist ${HOME}/.kde/share/config/ksslcertificatemanager | ||
88 | blacklist ${HOME}/.kde/share/config/kwalletrc | ||
89 | blacklist ${HOME}/.kde/share/config/kwinrc | ||
90 | blacklist ${HOME}/.kde/share/config/kwinrulesrc | ||
91 | blacklist ${HOME}/.kde/share/config/plasma-desktop-appletsrc | ||
92 | blacklist ${HOME}/.kde4/share/apps/kwin | ||
93 | blacklist ${HOME}/.kde4/share/apps/plasma | ||
94 | blacklist ${HOME}/.kde4/share/apps/solid | ||
95 | blacklist ${HOME}/.kde4/share/config/khotkeysrc | ||
96 | blacklist ${HOME}/.kde4/share/config/krunnerrc | ||
97 | blacklist ${HOME}/.kde4/share/config/kscreensaverrc | ||
98 | blacklist ${HOME}/.kde4/share/config/ksslcertificatemanager | ||
99 | blacklist ${HOME}/.kde4/share/config/kwalletrc | ||
100 | blacklist ${HOME}/.kde4/share/config/kwinrc | ||
101 | blacklist ${HOME}/.kde4/share/config/kwinrulesrc | ||
102 | blacklist ${HOME}/.kde4/share/config/plasma-desktop-appletsrc | ||
103 | blacklist ${HOME}/.local/share/kglobalaccel | ||
104 | blacklist ${HOME}/.local/share/kwin | ||
105 | blacklist ${HOME}/.local/share/plasma | ||
106 | blacklist ${HOME}/.local/share/plasmashell | ||
107 | blacklist ${HOME}/.local/share/solid | ||
108 | read-only ${HOME}/.cache/ksycoca5_* | ||
109 | read-only ${HOME}/.config/*notifyrc | ||
110 | read-only ${HOME}/.config/kdeglobals | ||
111 | read-only ${HOME}/.config/kio_httprc | ||
112 | read-only ${HOME}/.config/kiorc | ||
113 | read-only ${HOME}/.config/kioslaverc | ||
114 | read-only ${HOME}/.config/ksslcablacklist | ||
115 | read-only ${HOME}/.kde/share/apps/konsole | ||
116 | read-only ${HOME}/.kde/share/apps/kssl | ||
117 | read-only ${HOME}/.kde/share/config/*notifyrc | ||
118 | read-only ${HOME}/.kde/share/config/kdeglobals | ||
119 | read-only ${HOME}/.kde/share/config/kio_httprc | ||
120 | read-only ${HOME}/.kde/share/config/kioslaverc | ||
121 | read-only ${HOME}/.kde/share/config/ksslcablacklist | ||
122 | read-only ${HOME}/.kde/share/kde4/services | ||
123 | read-only ${HOME}/.kde4/share/apps/konsole | ||
124 | read-only ${HOME}/.kde4/share/apps/kssl | ||
125 | read-only ${HOME}/.kde4/share/config/*notifyrc | ||
126 | read-only ${HOME}/.kde4/share/config/kdeglobals | ||
127 | read-only ${HOME}/.kde4/share/config/kio_httprc | ||
128 | read-only ${HOME}/.kde4/share/config/kioslaverc | ||
129 | read-only ${HOME}/.kde4/share/config/ksslcablacklist | ||
130 | read-only ${HOME}/.kde4/share/kde4/services | ||
131 | read-only ${HOME}/.local/share/konsole | ||
132 | read-only ${HOME}/.local/share/kservices5 | ||
133 | read-only ${HOME}/.local/share/kssl | ||
134 | |||
135 | # KDE sockets | ||
136 | blacklist ${RUNUSER}/*.slave-socket | ||
137 | blacklist ${RUNUSER}/kdeinit5__* | ||
138 | blacklist ${RUNUSER}/kdesud_* | ||
139 | ?HAS_NODBUS: blacklist ${RUNUSER}/ksocket-* | ||
140 | ?HAS_NODBUS: blacklist /tmp/ksocket-* | ||
141 | |||
142 | # gnome | ||
143 | # contains extensions, last used times of applications, and notifications | ||
144 | blacklist ${HOME}/.local/share/gnome-shell | ||
145 | # no direct modification of dconf database | ||
146 | read-only ${HOME}/.config/dconf | ||
147 | |||
148 | # systemd | ||
149 | blacklist ${HOME}/.config/systemd | ||
150 | blacklist ${HOME}/.local/share/systemd | ||
151 | blacklist /var/lib/systemd | ||
152 | # blacklist /var/run/systemd | ||
153 | # creates problems on Arch where /etc/resolv.conf is a symlink to /var/run/systemd/resolve/resolv.conf | ||
154 | |||
155 | # openrc | ||
156 | blacklist /etc/runlevels/ | ||
157 | blacklist /etc/init.d/ | ||
158 | blacklist /etc/rc.conf | ||
159 | |||
160 | # VirtualBox | ||
161 | blacklist ${HOME}/.VirtualBox | ||
162 | blacklist ${HOME}/.config/VirtualBox | ||
163 | blacklist ${HOME}/VirtualBox VMs | ||
164 | |||
165 | # GNOME Boxes | ||
166 | blacklist ${HOME}/.config/gnome-boxes | ||
167 | blacklist ${HOME}/.local/share/gnome-boxes | ||
168 | |||
169 | # libvirt | ||
170 | blacklist ${HOME}/.cache/libvirt | ||
171 | blacklist ${HOME}/.config/libvirt | ||
172 | blacklist ${RUNUSER}/libvirt | ||
173 | blacklist /var/cache/libvirt | ||
174 | blacklist /var/lib/libvirt | ||
175 | blacklist /var/log/libvirt | ||
176 | |||
177 | # VeraCrypt | ||
178 | blacklist ${HOME}/.VeraCrypt | ||
179 | blacklist ${PATH}/veracrypt | ||
180 | blacklist ${PATH}/veracrypt-uninstall.sh | ||
181 | blacklist /usr/share/applications/veracrypt.* | ||
182 | blacklist /usr/share/pixmaps/veracrypt.* | ||
183 | blacklist /usr/share/veracrypt | ||
184 | |||
185 | # TrueCrypt | ||
186 | blacklist ${HOME}/.TrueCrypt | ||
187 | blacklist ${PATH}/truecrypt | ||
188 | blacklist ${PATH}/truecrypt-uninstall.sh | ||
189 | blacklist /usr/share/applications/truecrypt.* | ||
190 | blacklist /usr/share/pixmaps/truecrypt.* | ||
191 | blacklist /usr/share/truecrypt | ||
192 | |||
193 | # zuluCrypt | ||
194 | blacklist ${HOME}/.zuluCrypt | ||
195 | blacklist ${HOME}/.zuluCrypt-socket | ||
196 | blacklist ${PATH}/zuluCrypt-cli | ||
197 | blacklist ${PATH}/zuluMount-cli | ||
198 | |||
199 | # var | ||
200 | blacklist /var/cache/apt | ||
201 | blacklist /var/cache/pacman | ||
202 | blacklist /var/lib/apt | ||
203 | blacklist /var/lib/clamav | ||
204 | blacklist /var/lib/dkms | ||
205 | blacklist /var/lib/mysql/mysql.sock | ||
206 | blacklist /var/lib/mysqld/mysql.sock | ||
207 | blacklist /var/lib/pacman | ||
208 | blacklist /var/lib/upower | ||
209 | # blacklist /var/log - a virtual /var/log directory (mostly empty) is build up by default for | ||
210 | # every sandbox, unless --writable-var-log switch is activated | ||
211 | blacklist /var/mail | ||
212 | blacklist /var/opt | ||
213 | blacklist /var/run/acpid.socket | ||
214 | blacklist /var/run/docker.sock | ||
215 | blacklist /var/run/minissdpd.sock | ||
216 | blacklist /var/run/mysql/mysqld.sock | ||
217 | blacklist /var/run/mysqld/mysqld.sock | ||
218 | blacklist /var/run/rpcbind.sock | ||
219 | blacklist /var/run/screens | ||
220 | blacklist /var/spool/anacron | ||
221 | blacklist /var/spool/cron | ||
222 | blacklist /var/spool/mail | ||
223 | |||
224 | # etc | ||
225 | blacklist /etc/anacrontab | ||
226 | blacklist /etc/cron* | ||
227 | blacklist /etc/profile.d | ||
228 | blacklist /etc/rc.local | ||
229 | # rc1.d, rc2.d, ... | ||
230 | blacklist /etc/rc?.d | ||
231 | blacklist /etc/kernel* | ||
232 | blacklist /etc/grub* | ||
233 | blacklist /etc/dkms | ||
234 | blacklist /etc/apparmor* | ||
235 | blacklist /etc/selinux | ||
236 | blacklist /etc/modules* | ||
237 | blacklist /etc/logrotate* | ||
238 | blacklist /etc/adduser.conf | ||
239 | |||
240 | # Startup files | ||
241 | read-only ${HOME}/.antigen | ||
242 | read-only ${HOME}/.bash_aliases | ||
243 | read-only ${HOME}/.bash_login | ||
244 | read-only ${HOME}/.bash_logout | ||
245 | read-only ${HOME}/.bash_profile | ||
246 | read-only ${HOME}/.bashrc | ||
247 | read-only ${HOME}/.config/environment.d | ||
248 | read-only ${HOME}/.config/fish | ||
249 | read-only ${HOME}/.csh_files | ||
250 | read-only ${HOME}/.cshrc | ||
251 | read-only ${HOME}/.forward | ||
252 | read-only ${HOME}/.local/share/fish | ||
253 | read-only ${HOME}/.login | ||
254 | read-only ${HOME}/.logout | ||
255 | read-only ${HOME}/.oh-my-zsh | ||
256 | read-only ${HOME}/.pam_environment | ||
257 | read-only ${HOME}/.pgpkey | ||
258 | read-only ${HOME}/.plan | ||
259 | read-only ${HOME}/.profile | ||
260 | read-only ${HOME}/.project | ||
261 | read-only ${HOME}/.tcshrc | ||
262 | read-only ${HOME}/.zlogin | ||
263 | read-only ${HOME}/.zlogout | ||
264 | read-only ${HOME}/.zprofile | ||
265 | read-only ${HOME}/.zsh.d | ||
266 | read-only ${HOME}/.zsh_files | ||
267 | read-only ${HOME}/.zshenv | ||
268 | read-only ${HOME}/.zshrc | ||
269 | read-only ${HOME}/.zshrc.local | ||
270 | |||
271 | # Remote access | ||
272 | read-only ${HOME}/.ssh/authorized_keys | ||
273 | |||
274 | # Initialization files that allow arbitrary command execution | ||
275 | read-only ${HOME}/.caffrc | ||
276 | read-only ${HOME}/.cargo/env | ||
277 | read-only ${HOME}/.dotfiles | ||
278 | read-only ${HOME}/.emacs | ||
279 | read-only ${HOME}/.emacs.d | ||
280 | read-only ${HOME}/.exrc | ||
281 | read-only ${HOME}/.gvimrc | ||
282 | read-only ${HOME}/.homesick | ||
283 | read-only ${HOME}/.iscreenrc | ||
284 | read-only ${HOME}/.local/share/cool-retro-term | ||
285 | read-only ${HOME}/.mailcap | ||
286 | read-only ${HOME}/.msmtprc | ||
287 | read-only ${HOME}/.mutt/muttrc | ||
288 | read-only ${HOME}/.muttrc | ||
289 | read-only ${HOME}/.nano | ||
290 | read-only ${HOME}/.pythonrc.py | ||
291 | read-only ${HOME}/.reportbugrc | ||
292 | read-only ${HOME}/.tmux.conf | ||
293 | read-only ${HOME}/.vim | ||
294 | read-only ${HOME}/.viminfo | ||
295 | read-only ${HOME}/.vimrc | ||
296 | read-only ${HOME}/.xmonad | ||
297 | read-only ${HOME}/.xscreensaver | ||
298 | read-only ${HOME}/_exrc | ||
299 | read-only ${HOME}/_gvimrc | ||
300 | read-only ${HOME}/_vimrc | ||
301 | read-only ${HOME}/dotfiles | ||
302 | |||
303 | # Make directories commonly found in $PATH read-only | ||
304 | read-only ${HOME}/.gem | ||
305 | read-only ${HOME}/.luarocks | ||
306 | read-only ${HOME}/.npm-packages | ||
307 | read-only ${HOME}/bin | ||
308 | read-only ${HOME}/.bin | ||
309 | read-only ${HOME}/.local/bin | ||
310 | read-only ${HOME}/.cargo/bin | ||
311 | read-only ${HOME}/.cargo/env | ||
312 | |||
313 | # Write-protection for desktop entries | ||
314 | read-only ${HOME}/.config/menus | ||
315 | read-only ${HOME}/.gnome/apps | ||
316 | read-only ${HOME}/.local/share/applications | ||
317 | |||
318 | # Write-protection for thumbnailer dir | ||
319 | read-only ${HOME}/.local/share/thumbnailers | ||
320 | |||
321 | # top secret | ||
322 | blacklist ${HOME}/*.kdb | ||
323 | blacklist ${HOME}/*.kdbx | ||
324 | blacklist ${HOME}/*.key | ||
325 | blacklist ${HOME}/.Private | ||
326 | blacklist ${HOME}/.caff | ||
327 | blacklist ${HOME}/.cargo/credentials | ||
328 | blacklist ${HOME}/.cert | ||
329 | blacklist ${HOME}/.config/keybase | ||
330 | blacklist ${HOME}/.davfs2/secrets | ||
331 | blacklist ${HOME}/.ecryptfs | ||
332 | blacklist ${HOME}/.fetchmailrc | ||
333 | blacklist ${HOME}/.fscrypt | ||
334 | blacklist ${HOME}/.git-credential-cache | ||
335 | blacklist ${HOME}/.git-credentials | ||
336 | blacklist ${HOME}/.gnome2/keyrings | ||
337 | blacklist ${HOME}/.gnupg | ||
338 | blacklist ${HOME}/.config/hub | ||
339 | blacklist ${HOME}/.kde/share/apps/kwallet | ||
340 | blacklist ${HOME}/.kde4/share/apps/kwallet | ||
341 | blacklist ${HOME}/.local/share/keyrings | ||
342 | blacklist ${HOME}/.local/share/kwalletd | ||
343 | blacklist ${HOME}/.local/share/plasma-vault | ||
344 | blacklist ${HOME}/.msmtprc | ||
345 | blacklist ${HOME}/.mutt | ||
346 | blacklist ${HOME}/.muttrc | ||
347 | blacklist ${HOME}/.netrc | ||
348 | blacklist ${HOME}/.nyx | ||
349 | blacklist ${HOME}/.pki | ||
350 | blacklist ${HOME}/.local/share/pki | ||
351 | blacklist ${HOME}/.smbcredentials | ||
352 | blacklist ${HOME}/.ssh | ||
353 | blacklist ${HOME}/.vaults | ||
354 | blacklist /.fscrypt | ||
355 | blacklist /etc/davfs2/secrets | ||
356 | blacklist /etc/group+ | ||
357 | blacklist /etc/group- | ||
358 | blacklist /etc/gshadow | ||
359 | blacklist /etc/gshadow+ | ||
360 | blacklist /etc/gshadow- | ||
361 | blacklist /etc/passwd+ | ||
362 | blacklist /etc/passwd- | ||
363 | blacklist /etc/shadow | ||
364 | blacklist /etc/shadow+ | ||
365 | blacklist /etc/shadow- | ||
366 | blacklist /etc/ssh | ||
367 | blacklist /home/.ecryptfs | ||
368 | blacklist /home/.fscrypt | ||
369 | blacklist /var/backup | ||
370 | |||
371 | # cloud provider configuration | ||
372 | blacklist ${HOME}/.aws | ||
373 | blacklist ${HOME}/.boto | ||
374 | blacklist ${HOME}/.config/gcloud | ||
375 | blacklist ${HOME}/.kube | ||
376 | blacklist ${HOME}/.passwd-s3fs | ||
377 | blacklist ${HOME}/.s3cmd | ||
378 | blacklist /etc/boto.cfg | ||
379 | |||
380 | # system directories | ||
381 | blacklist /sbin | ||
382 | blacklist /usr/local/sbin | ||
383 | blacklist /usr/sbin | ||
384 | |||
385 | # system management | ||
386 | blacklist ${PATH}/at | ||
387 | blacklist ${PATH}/chage | ||
388 | blacklist ${PATH}/chfn | ||
389 | blacklist ${PATH}/chsh | ||
390 | blacklist ${PATH}/crontab | ||
391 | blacklist ${PATH}/evtest | ||
392 | blacklist ${PATH}/expiry | ||
393 | blacklist ${PATH}/fusermount | ||
394 | blacklist ${PATH}/gksu | ||
395 | blacklist ${PATH}/gksudo | ||
396 | blacklist ${PATH}/gpasswd | ||
397 | blacklist ${PATH}/kdesudo | ||
398 | blacklist ${PATH}/ksu | ||
399 | blacklist ${PATH}/mount | ||
400 | blacklist ${PATH}/mount.ecryptfs_private | ||
401 | blacklist ${PATH}/nc | ||
402 | blacklist ${PATH}/ncat | ||
403 | blacklist ${PATH}/newgidmap | ||
404 | blacklist ${PATH}/newgrp | ||
405 | blacklist ${PATH}/newuidmap | ||
406 | blacklist ${PATH}/ntfs-3g | ||
407 | blacklist ${PATH}/pkexec | ||
408 | blacklist ${PATH}/procmail | ||
409 | blacklist ${PATH}/sg | ||
410 | blacklist ${PATH}/strace | ||
411 | blacklist ${PATH}/su | ||
412 | blacklist ${PATH}/sudo | ||
413 | blacklist ${PATH}/umount | ||
414 | blacklist ${PATH}/unix_chkpwd | ||
415 | blacklist ${PATH}/xev | ||
416 | blacklist ${PATH}/xinput | ||
417 | |||
418 | # other SUID binaries | ||
419 | blacklist /usr/lib/virtualbox | ||
420 | blacklist /usr/lib64/virtualbox | ||
421 | |||
422 | # prevent lxterminal connecting to an existing lxterminal session | ||
423 | blacklist /tmp/.lxterminal-socket* | ||
424 | # prevent tmux connecting to an existing session | ||
425 | blacklist /tmp/tmux-* | ||
426 | |||
427 | # disable terminals running as server resulting in sandbox escape | ||
428 | blacklist ${PATH}/lxterminal | ||
429 | blacklist ${PATH}/gnome-terminal | ||
430 | blacklist ${PATH}/gnome-terminal.wrapper | ||
431 | blacklist ${PATH}/lilyterm | ||
432 | blacklist ${PATH}/mate-terminal | ||
433 | blacklist ${PATH}/mate-terminal.wrapper | ||
434 | blacklist ${PATH}/pantheon-terminal | ||
435 | blacklist ${PATH}/roxterm | ||
436 | blacklist ${PATH}/roxterm-config | ||
437 | blacklist ${PATH}/terminix | ||
438 | blacklist ${PATH}/tilix | ||
439 | blacklist ${PATH}/urxvtc | ||
440 | blacklist ${PATH}/urxvtcd | ||
441 | blacklist ${PATH}/xfce4-terminal | ||
442 | blacklist ${PATH}/xfce4-terminal.wrapper | ||
443 | # blacklist ${PATH}/konsole | ||
444 | # konsole doesn't seem to have this problem - last tested on Ubuntu 16.04 | ||
445 | |||
446 | # kernel files | ||
447 | blacklist /initrd* | ||
448 | blacklist /vmlinuz* | ||
449 | |||
450 | # snapshot files | ||
451 | blacklist /.snapshots | ||
452 | |||
453 | # flatpak | ||
454 | blacklist ${HOME}/.config/flatpak | ||
455 | blacklist ${HOME}/.local/share/flatpak/app | ||
456 | blacklist ${HOME}/.local/share/flatpak/appstream | ||
457 | blacklist ${HOME}/.local/share/flatpak/db | ||
458 | read-only ${HOME}/.local/share/flatpak/exports | ||
459 | blacklist ${HOME}/.local/share/flatpak/oci | ||
460 | blacklist ${HOME}/.local/share/flatpak/overrides | ||
461 | blacklist ${HOME}/.local/share/flatpak/repo | ||
462 | blacklist ${HOME}/.local/share/flatpak/runtime | ||
463 | blacklist ${HOME}/.var | ||
464 | blacklist ${RUNUSER}/app | ||
465 | blacklist ${RUNUSER}/doc | ||
466 | blacklist ${RUNUSER}/.dbus-proxy | ||
467 | blacklist ${RUNUSER}/.flatpak | ||
468 | blacklist ${RUNUSER}/.flatpak-helper | ||
469 | blacklist /usr/share/flatpak | ||
470 | blacklist /var/lib/flatpak | ||
471 | # most of the time bwrap is SUID binary | ||
472 | blacklist ${PATH}/bwrap | ||
473 | |||
474 | # mail directories used by mutt | ||
475 | blacklist ${HOME}/.Mail | ||
476 | blacklist ${HOME}/.mail | ||
477 | blacklist ${HOME}/.signature | ||
478 | blacklist ${HOME}/Mail | ||
479 | blacklist ${HOME}/mail | ||
480 | blacklist ${HOME}/postponed | ||
481 | blacklist ${HOME}/sent | ||
482 | |||
483 | # kernel configuration | ||
484 | blacklist /proc/config.gz | ||
485 | |||
486 | # prevent DNS malware attempting to communicate with the server | ||
487 | # using regular DNS tools | ||
488 | blacklist ${PATH}/dig | ||
489 | blacklist ${PATH}/kdig | ||
490 | blacklist ${PATH}/nslookup | ||
491 | blacklist ${PATH}/host | ||
492 | blacklist ${PATH}/dlint | ||
493 | blacklist ${PATH}/dnswalk | ||
494 | blacklist ${PATH}/dns2tcp | ||
495 | blacklist ${PATH}/iodine | ||
496 | blacklist ${PATH}/knsupdate | ||
497 | blacklist ${PATH}/resolvectl | ||
diff --git a/etc/inc/disable-devel.inc b/etc/inc/disable-devel.inc new file mode 100644 index 000000000..e1ba13380 --- /dev/null +++ b/etc/inc/disable-devel.inc | |||
@@ -0,0 +1,68 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-devel.local | ||
4 | |||
5 | # development tools | ||
6 | |||
7 | # clang/llvm | ||
8 | blacklist ${PATH}/clang* | ||
9 | blacklist ${PATH}/lldb* | ||
10 | blacklist ${PATH}/llvm* | ||
11 | # see issue #2106 - it disables hardware acceleration in Firefox on Radeon GPU | ||
12 | # blacklist /usr/lib/llvm* | ||
13 | |||
14 | # GCC | ||
15 | blacklist ${PATH}/as | ||
16 | blacklist ${PATH}/cc | ||
17 | blacklist ${PATH}/c++* | ||
18 | blacklist ${PATH}/c8* | ||
19 | blacklist ${PATH}/c9* | ||
20 | blacklist ${PATH}/cpp* | ||
21 | blacklist ${PATH}/g++* | ||
22 | blacklist ${PATH}/gcc* | ||
23 | blacklist ${PATH}/gdb | ||
24 | blacklist ${PATH}/ld | ||
25 | blacklist ${PATH}/*-gcc* | ||
26 | blacklist ${PATH}/*-g++* | ||
27 | blacklist ${PATH}/*-gcc* | ||
28 | blacklist ${PATH}/*-g++* | ||
29 | # seems to create problems on Gentoo | ||
30 | #blacklist /usr/lib/gcc | ||
31 | |||
32 | #Go | ||
33 | blacklist ${PATH}/gccgo | ||
34 | blacklist ${PATH}/go | ||
35 | blacklist ${PATH}/gofmt | ||
36 | |||
37 | # Java | ||
38 | blacklist ${PATH}/java | ||
39 | blacklist ${PATH}/javac | ||
40 | blacklist /etc/java | ||
41 | blacklist /usr/lib/java | ||
42 | blacklist /usr/share/java | ||
43 | |||
44 | #OpenSSL | ||
45 | blacklist ${PATH}/openssl | ||
46 | blacklist ${PATH}/openssl-1.0 | ||
47 | |||
48 | #Rust | ||
49 | blacklist ${PATH}/rust-gdb | ||
50 | blacklist ${PATH}/rust-lldb | ||
51 | blacklist ${PATH}/rustc | ||
52 | |||
53 | # tcc - Tiny C Compiler | ||
54 | blacklist ${PATH}/tcc | ||
55 | blacklist ${PATH}/x86_64-tcc | ||
56 | blacklist /usr/lib/tcc | ||
57 | |||
58 | # Valgrind | ||
59 | blacklist ${PATH}/valgrind* | ||
60 | blacklist /usr/lib/valgrind | ||
61 | |||
62 | |||
63 | # Source-Code | ||
64 | |||
65 | blacklist /usr/src | ||
66 | blacklist /usr/local/src | ||
67 | blacklist /usr/include | ||
68 | blacklist /usr/local/include | ||
diff --git a/etc/inc/disable-exec.inc b/etc/inc/disable-exec.inc new file mode 100644 index 000000000..ee3391730 --- /dev/null +++ b/etc/inc/disable-exec.inc | |||
@@ -0,0 +1,11 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-exec.local | ||
4 | |||
5 | noexec ${HOME} | ||
6 | noexec ${RUNUSER} | ||
7 | noexec /dev/shm | ||
8 | noexec /tmp | ||
9 | # /var is noexec by default for unprivileged users | ||
10 | # except there is a writable-var option, so just in case: | ||
11 | noexec /var | ||
diff --git a/etc/inc/disable-interpreters.inc b/etc/inc/disable-interpreters.inc new file mode 100644 index 000000000..59e9c7de3 --- /dev/null +++ b/etc/inc/disable-interpreters.inc | |||
@@ -0,0 +1,64 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-interpreters.local | ||
4 | |||
5 | # gjs | ||
6 | blacklist ${PATH}/gjs | ||
7 | blacklist ${PATH}/gjs-console | ||
8 | blacklist /usr/lib/gjs | ||
9 | blacklist /usr/lib64/gjs | ||
10 | blacklist /usr/lib/libgjs* | ||
11 | blacklist /usr/lib64/libgjs* | ||
12 | |||
13 | # Lua | ||
14 | blacklist ${PATH}/lua* | ||
15 | blacklist /usr/include/lua* | ||
16 | blacklist /usr/lib/liblua* | ||
17 | blacklist /usr/lib/lua | ||
18 | blacklist /usr/share/lua* | ||
19 | |||
20 | # mozjs | ||
21 | blacklist /usr/lib64/libmozjs-* | ||
22 | |||
23 | # Node.js | ||
24 | blacklist ${PATH}/node | ||
25 | blacklist /usr/include/node | ||
26 | |||
27 | # nvm | ||
28 | blacklist ${HOME}/.nvm | ||
29 | |||
30 | # Perl | ||
31 | blacklist ${PATH}/cpan* | ||
32 | blacklist ${PATH}/core_perl | ||
33 | blacklist ${PATH}/perl | ||
34 | blacklist ${PATH}/site_perl | ||
35 | blacklist ${PATH}/vendor_perl | ||
36 | blacklist /usr/lib/perl* | ||
37 | blacklist /usr/share/perl* | ||
38 | |||
39 | # PHP | ||
40 | blacklist ${PATH}/php* | ||
41 | blacklist /usr/lib/php* | ||
42 | blacklist /usr/share/php* | ||
43 | |||
44 | # Ruby | ||
45 | blacklist ${PATH}/ruby | ||
46 | blacklist /usr/lib/ruby | ||
47 | |||
48 | # Programs using python: deluge, firefox addons, filezilla, cherrytree, xchat, hexchat, libreoffice, scribus | ||
49 | # Python 2 | ||
50 | blacklist ${PATH}/python2* | ||
51 | blacklist /usr/include/python2* | ||
52 | blacklist /usr/lib/python2* | ||
53 | blacklist /usr/local/lib/python2* | ||
54 | blacklist /usr/share/python2* | ||
55 | |||
56 | # You will want to add noblacklist for python3 stuff in the firefox and/or chromium profiles if you use the Gnome connector (see Issue #2026) | ||
57 | |||
58 | # Python 3 | ||
59 | blacklist ${PATH}/python3* | ||
60 | blacklist /usr/include/python3* | ||
61 | blacklist /usr/lib/python3* | ||
62 | blacklist /usr/lib64/python3* | ||
63 | blacklist /usr/local/lib/python3* | ||
64 | blacklist /usr/share/python3* | ||
diff --git a/etc/inc/disable-passwdmgr.inc b/etc/inc/disable-passwdmgr.inc new file mode 100644 index 000000000..316378cb8 --- /dev/null +++ b/etc/inc/disable-passwdmgr.inc | |||
@@ -0,0 +1,18 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-passwdmgr.local | ||
4 | |||
5 | blacklist ${HOME}/.config/Bitwarden | ||
6 | blacklist ${HOME}/.config/KeePass | ||
7 | blacklist ${HOME}/.config/keepass | ||
8 | blacklist ${HOME}/.config/keepassx | ||
9 | blacklist ${HOME}/.config/keepassxc | ||
10 | blacklist ${HOME}/.config/Sinew Software Systems | ||
11 | blacklist ${HOME}/.fpm | ||
12 | blacklist ${HOME}/.keepass | ||
13 | blacklist ${HOME}/.keepassx | ||
14 | blacklist ${HOME}/.keepassxc | ||
15 | blacklist ${HOME}/.lastpass | ||
16 | blacklist ${HOME}/.local/share/KeePass | ||
17 | blacklist ${HOME}/.local/share/keepass | ||
18 | blacklist ${HOME}/.password-store | ||
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc new file mode 100644 index 000000000..9e6af8785 --- /dev/null +++ b/etc/inc/disable-programs.inc | |||
@@ -0,0 +1,877 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-programs.local | ||
4 | |||
5 | blacklist ${HOME}/Arduino | ||
6 | blacklist ${HOME}/i2p | ||
7 | blacklist ${HOME}/Monero/wallets | ||
8 | blacklist ${HOME}/Nextcloud/Notes | ||
9 | blacklist ${HOME}/SoftMaker | ||
10 | blacklist ${HOME}/Standard Notes Backups | ||
11 | blacklist ${HOME}/TeamSpeak3-Client-linux_x86 | ||
12 | blacklist ${HOME}/TeamSpeak3-Client-linux_amd64 | ||
13 | blacklist ${HOME}/hyperrogue.ini | ||
14 | blacklist ${HOME}/mps | ||
15 | blacklist ${HOME}/wallet.dat | ||
16 | blacklist ${HOME}/.*coin | ||
17 | blacklist ${HOME}/.8pecxstudios | ||
18 | blacklist ${HOME}/.AndroidStudio* | ||
19 | blacklist ${HOME}/.Atom | ||
20 | blacklist ${HOME}/.CLion* | ||
21 | blacklist ${HOME}/.FBReader | ||
22 | blacklist ${HOME}/.FontForge | ||
23 | blacklist ${HOME}/.IdeaIC* | ||
24 | blacklist ${HOME}/.LuminanceHDR | ||
25 | blacklist ${HOME}/.Mathematica | ||
26 | blacklist ${HOME}/.Natron | ||
27 | blacklist ${HOME}/.PlayOnLinux | ||
28 | blacklist ${HOME}/.PyCharm* | ||
29 | blacklist ${HOME}/.Sayonara | ||
30 | blacklist ${HOME}/.Steam | ||
31 | blacklist ${HOME}/.Steampath | ||
32 | blacklist ${HOME}/.Steampid | ||
33 | blacklist ${HOME}/.TelegramDesktop | ||
34 | blacklist ${HOME}/.VSCodium | ||
35 | blacklist ${HOME}/.ViberPC | ||
36 | blacklist ${HOME}/.VirtualBox | ||
37 | blacklist ${HOME}/.WebStorm* | ||
38 | blacklist ${HOME}/.Wolfram Research | ||
39 | blacklist ${HOME}/.ZAP | ||
40 | blacklist ${HOME}/.aMule | ||
41 | blacklist ${HOME}/.android | ||
42 | blacklist ${HOME}/.anydesk | ||
43 | blacklist ${HOME}/.arduino15 | ||
44 | blacklist ${HOME}/.aria2 | ||
45 | blacklist ${HOME}/.arm | ||
46 | blacklist ${HOME}/.asunder_album_artist | ||
47 | blacklist ${HOME}/.asunder_album_genre | ||
48 | blacklist ${HOME}/.asunder_album_title | ||
49 | blacklist ${HOME}/.atom | ||
50 | blacklist ${HOME}/.attic | ||
51 | blacklist ${HOME}/.audacity-data | ||
52 | blacklist ${HOME}/.bcast5 | ||
53 | blacklist ${HOME}/.bibletime | ||
54 | blacklist ${HOME}/.bitcoin | ||
55 | blacklist ${HOME}/.bogofilter | ||
56 | blacklist ${HOME}/.bzf | ||
57 | blacklist ${HOME}/.cargo/registry | ||
58 | blacklist ${HOME}/.cargo/config | ||
59 | blacklist ${HOME}/.claws-mail | ||
60 | blacklist ${HOME}/.cliqz | ||
61 | blacklist ${HOME}/.clonk | ||
62 | blacklist ${HOME}/.config/0ad | ||
63 | blacklist ${HOME}/.config/2048-qt | ||
64 | blacklist ${HOME}/.config/Atom | ||
65 | blacklist ${HOME}/.config/Audaciousrc | ||
66 | blacklist ${HOME}/.config/Authenticator | ||
67 | blacklist ${HOME}/.config/Beaker Browser | ||
68 | blacklist ${HOME}/.config/Bitcoin | ||
69 | blacklist ${HOME}/.config/Bitwarden | ||
70 | blacklist ${HOME}/.config/Brackets | ||
71 | blacklist ${HOME}/.config/BraveSoftware | ||
72 | blacklist ${HOME}/.config/Clementine | ||
73 | blacklist ${HOME}/.config/Code | ||
74 | blacklist ${HOME}/.config/Code - OSS | ||
75 | blacklist ${HOME}/.config/Code Industry | ||
76 | blacklist ${HOME}/.config/Cryptocat | ||
77 | blacklist ${HOME}/.config/Debauchee/Barrier.conf | ||
78 | blacklist ${HOME}/.config/Enox | ||
79 | blacklist ${HOME}/.config/Ferdi | ||
80 | blacklist ${HOME}/.config/Franz | ||
81 | blacklist ${HOME}/.config/FreeCAD | ||
82 | blacklist ${HOME}/.config/Fritzing | ||
83 | blacklist ${HOME}/.config/GIMP | ||
84 | blacklist ${HOME}/.config/GitHub Desktop | ||
85 | blacklist ${HOME}/.config/Gitter | ||
86 | blacklist ${HOME}/.config/Google | ||
87 | blacklist ${HOME}/.config/Google Play Music Desktop Player | ||
88 | blacklist ${HOME}/.config/Gpredict | ||
89 | blacklist ${HOME}/.config/INRIA | ||
90 | blacklist ${HOME}/.config/InSilmaril | ||
91 | blacklist ${HOME}/.config/Jitsi Meet | ||
92 | blacklist ${HOME}/.config/Kid3 | ||
93 | blacklist ${HOME}/.config/Kingsoft | ||
94 | blacklist ${HOME}/.config/Luminance | ||
95 | blacklist ${HOME}/.config/Meltytech | ||
96 | blacklist ${HOME}/.config/Mendeley Ltd. | ||
97 | blacklist ${HOME}/.config/Min | ||
98 | blacklist ${HOME}/.config/Mousepad | ||
99 | blacklist ${HOME}/.config/Mumble | ||
100 | blacklist ${HOME}/.config/MusE | ||
101 | blacklist ${HOME}/.config/MuseScore | ||
102 | blacklist ${HOME}/.config/MusicBrainz | ||
103 | blacklist ${HOME}/.config/Nathan Osman | ||
104 | blacklist ${HOME}/.config/Nylas Mail | ||
105 | blacklist ${HOME}/.config/PBE | ||
106 | blacklist ${HOME}/.config/Philipp Schmieder | ||
107 | blacklist ${HOME}/.config/QGIS | ||
108 | blacklist ${HOME}/.config/QMediathekView | ||
109 | blacklist ${HOME}/.config/Qlipper | ||
110 | blacklist ${HOME}/.config/QuiteRss | ||
111 | blacklist ${HOME}/.config/QuiteRssrc | ||
112 | blacklist ${HOME}/.config/Rambox | ||
113 | blacklist ${HOME}/.config/Riot | ||
114 | blacklist ${HOME}/.config/Rocket.Chat | ||
115 | blacklist ${HOME}/.config/Signal | ||
116 | blacklist ${HOME}/.config/Sinew Software Systems | ||
117 | blacklist ${HOME}/.config/Slack | ||
118 | blacklist ${HOME}/.config/Standard Notes | ||
119 | blacklist ${HOME}/.config/SubDownloader | ||
120 | blacklist ${HOME}/.config/Thunar | ||
121 | blacklist ${HOME}/.config/VirtualBox | ||
122 | blacklist ${HOME}/.config/Wire | ||
123 | blacklist ${HOME}/.config/Zeal | ||
124 | blacklist ${HOME}/.config/abiword | ||
125 | blacklist ${HOME}/.config/agenda | ||
126 | blacklist ${HOME}/.config/akonadi* | ||
127 | blacklist ${HOME}/.config/akregatorrc | ||
128 | blacklist ${HOME}/.config/ardour4 | ||
129 | blacklist ${HOME}/.config/ardour5 | ||
130 | blacklist ${HOME}/.config/aria2 | ||
131 | blacklist ${HOME}/.config/arkrc | ||
132 | blacklist ${HOME}/.config/artha.conf | ||
133 | blacklist ${HOME}/.config/artha.log | ||
134 | blacklist ${HOME}/.config/asunder | ||
135 | blacklist ${HOME}/.config/atril | ||
136 | blacklist ${HOME}/.config/audacious | ||
137 | blacklist ${HOME}/.config/autokey | ||
138 | blacklist ${HOME}/.config/aweather | ||
139 | blacklist ${HOME}/.config/baloofilerc | ||
140 | blacklist ${HOME}/.config/baloorc | ||
141 | blacklist ${HOME}/.config/blender | ||
142 | blacklist ${HOME}/.config/bless | ||
143 | blacklist ${HOME}/.config/bnox | ||
144 | blacklist ${HOME}/.config/borg | ||
145 | blacklist ${HOME}/.config/brasero | ||
146 | blacklist ${HOME}/.config/brave | ||
147 | blacklist ${HOME}/.config/brave-flags.conf | ||
148 | blacklist ${HOME}/.config/caja | ||
149 | blacklist ${HOME}/.config/calibre | ||
150 | blacklist ${HOME}/.config/cantata | ||
151 | blacklist ${HOME}/.config/catfish | ||
152 | blacklist ${HOME}/.config/celluloid | ||
153 | blacklist ${HOME}/.config/cherrytree | ||
154 | blacklist ${HOME}/.config/chromium | ||
155 | blacklist ${HOME}/.config/chromium-dev | ||
156 | blacklist ${HOME}/.config/chromium-flags.conf | ||
157 | blacklist ${HOME}/.config/clipit | ||
158 | blacklist ${HOME}/.config/cliqz | ||
159 | blacklist ${HOME}/.config/cmus | ||
160 | blacklist ${HOME}/.config/corebird | ||
161 | blacklist ${HOME}/.config/cower | ||
162 | blacklist ${HOME}/.config/darktable | ||
163 | blacklist ${HOME}/.config/deadbeef | ||
164 | blacklist ${HOME}/.config/deluge | ||
165 | blacklist ${HOME}/.config/devilspie2 | ||
166 | blacklist ${HOME}/.config/digikam | ||
167 | blacklist ${HOME}/.config/digikamrc | ||
168 | blacklist ${HOME}/.config/discord | ||
169 | blacklist ${HOME}/.config/discordcanary | ||
170 | blacklist ${HOME}/.config/dkl | ||
171 | blacklist ${HOME}/.config/dnox | ||
172 | blacklist ${HOME}/.config/dolphinrc | ||
173 | blacklist ${HOME}/.config/dragonplayerrc | ||
174 | blacklist ${HOME}/.config/draw.io | ||
175 | blacklist ${HOME}/.config/d-feet | ||
176 | blacklist ${HOME}/.config/electron-mail | ||
177 | blacklist ${HOME}/.config/emaildefaults | ||
178 | blacklist ${HOME}/.config/emailidentities | ||
179 | blacklist ${HOME}/.config/enchant | ||
180 | blacklist ${HOME}/.config/eog | ||
181 | blacklist ${HOME}/.config/epiphany | ||
182 | blacklist ${HOME}/.config/evince | ||
183 | blacklist ${HOME}/.config/evolution | ||
184 | blacklist ${HOME}/.config/falkon | ||
185 | blacklist ${HOME}/.config/filezilla | ||
186 | blacklist ${HOME}/.config/flowblade | ||
187 | blacklist ${HOME}/.config/font-manager | ||
188 | blacklist ${HOME}/.config/freecol | ||
189 | blacklist ${HOME}/.config/gajim | ||
190 | blacklist ${HOME}/.config/galculator | ||
191 | blacklist ${HOME}/.config/gconf | ||
192 | blacklist ${HOME}/.config/geany | ||
193 | blacklist ${HOME}/.config/gedit | ||
194 | blacklist ${HOME}/.config/geeqie | ||
195 | blacklist ${HOME}/.config/ghb | ||
196 | blacklist ${HOME}/.config/ghostwriter | ||
197 | blacklist ${HOME}/.config/git | ||
198 | blacklist ${HOME}/.config/globaltime | ||
199 | blacklist ${HOME}/.config/gmpc | ||
200 | blacklist ${HOME}/.config/gnome-builder | ||
201 | blacklist ${HOME}/.config/gnome-chess | ||
202 | blacklist ${HOME}/.config/gnome-latex | ||
203 | blacklist ${HOME}/.config/gnome-mplayer | ||
204 | blacklist ${HOME}/.config/gnome-mpv | ||
205 | blacklist ${HOME}/.config/gnome-pie | ||
206 | blacklist ${HOME}/.config/godot | ||
207 | blacklist ${HOME}/.config/google-chrome | ||
208 | blacklist ${HOME}/.config/google-chrome-beta | ||
209 | blacklist ${HOME}/.config/google-chrome-unstable | ||
210 | blacklist ${HOME}/.config/gpicview | ||
211 | blacklist ${HOME}/.config/gthumb | ||
212 | blacklist ${HOME}/.config/gummi | ||
213 | blacklist ${HOME}/.config/gwenviewrc | ||
214 | blacklist ${HOME}/.config/hexchat | ||
215 | blacklist ${HOME}/.config/i2p | ||
216 | blacklist ${HOME}/.config/inkscape | ||
217 | blacklist ${HOME}/.config/inox | ||
218 | blacklist ${HOME}/.config/iridium | ||
219 | blacklist ${HOME}/.config/itch | ||
220 | blacklist ${HOME}/.config/jd-gui.cfg | ||
221 | blacklist ${HOME}/.config/k3brc | ||
222 | blacklist ${HOME}/.config/kaffeinerc | ||
223 | blacklist ${HOME}/.config/kalgebrarc | ||
224 | blacklist ${HOME}/.config/katemetainfos | ||
225 | blacklist ${HOME}/.config/katepartrc | ||
226 | blacklist ${HOME}/.config/katerc | ||
227 | blacklist ${HOME}/.config/kateschemarc | ||
228 | blacklist ${HOME}/.config/katesyntaxhighlightingrc | ||
229 | blacklist ${HOME}/.config/katevirc | ||
230 | blacklist ${HOME}/.config/kdeconnect | ||
231 | blacklist ${HOME}/.config/kdenliverc | ||
232 | blacklist ${HOME}/.config/kfindrc | ||
233 | blacklist ${HOME}/.config/kgetrc | ||
234 | blacklist ${HOME}/.config/kid3rc | ||
235 | blacklist ${HOME}/.config/klavaro | ||
236 | blacklist ${HOME}/.config/klipperrc | ||
237 | blacklist ${HOME}/.config/kmail2rc | ||
238 | blacklist ${HOME}/.config/kmailsearchindexingrc | ||
239 | blacklist ${HOME}/.config/kmplayerrc | ||
240 | blacklist ${HOME}/.config/knotesrc | ||
241 | blacklist ${HOME}/.config/konversationrc | ||
242 | blacklist ${HOME}/.config/kritarc | ||
243 | blacklist ${HOME}/.config/ktorrentrc | ||
244 | blacklist ${HOME}/.config/ktouch2rc | ||
245 | blacklist ${HOME}/.config/kwriterc | ||
246 | blacklist ${HOME}/.config/leafpad | ||
247 | blacklist ${HOME}/.config/libreoffice | ||
248 | blacklist ${HOME}/.config/liferea | ||
249 | blacklist ${HOME}/.config/lugaru | ||
250 | blacklist ${HOME}/.config/lximage-qt | ||
251 | blacklist ${HOME}/.config/mailtransports | ||
252 | blacklist ${HOME}/.config/mana | ||
253 | blacklist ${HOME}/.config/mate-calc | ||
254 | blacklist ${HOME}/.config/mate/eom | ||
255 | blacklist ${HOME}/.config/mate/mate-dictionary | ||
256 | blacklist ${HOME}/.config/meld | ||
257 | blacklist ${HOME}/.config/meteo-qt | ||
258 | blacklist ${HOME}/.config/mfusion | ||
259 | blacklist ${HOME}/.config/Microsoft | ||
260 | blacklist ${HOME}/.config/midori | ||
261 | blacklist ${HOME}/.config/mono | ||
262 | blacklist ${HOME}/.config/mpDris2 | ||
263 | blacklist ${HOME}/.config/mpd | ||
264 | blacklist ${HOME}/.config/mps-youtube | ||
265 | blacklist ${HOME}/.config/mpv | ||
266 | blacklist ${HOME}/.config/mupen64plus | ||
267 | blacklist ${HOME}/.config/mypaint | ||
268 | blacklist ${HOME}/.config/nano | ||
269 | blacklist ${HOME}/.config/nautilus | ||
270 | blacklist ${HOME}/.config/nemo | ||
271 | blacklist ${HOME}/.config/netsurf | ||
272 | blacklist ${HOME}/.config/newsbeuter | ||
273 | blacklist ${HOME}/.config/nheko | ||
274 | blacklist ${HOME}/.config/NitroShare | ||
275 | blacklist ${HOME}/.config/nomacs | ||
276 | blacklist ${HOME}/.config/obs-studio | ||
277 | blacklist ${HOME}/.config/okularpartrc | ||
278 | blacklist ${HOME}/.config/okularrc | ||
279 | blacklist ${HOME}/.config/onionshare | ||
280 | blacklist ${HOME}/.config/onlyoffice | ||
281 | blacklist ${HOME}/.config/opera | ||
282 | blacklist ${HOME}/.config/opera-beta | ||
283 | blacklist ${HOME}/.config/orage | ||
284 | blacklist ${HOME}/.config/org.gabmus.gfeeds.json | ||
285 | blacklist ${HOME}/.config/org.kde.gwenviewrc | ||
286 | blacklist ${HOME}/.config/pavucontrol-qt | ||
287 | blacklist ${HOME}/.config/pavucontrol.ini | ||
288 | blacklist ${HOME}/.config/pcmanfm | ||
289 | blacklist ${HOME}/.config/pdfmod | ||
290 | blacklist ${HOME}/.config/Pinta | ||
291 | blacklist ${HOME}/.config/pitivi | ||
292 | blacklist ${HOME}/.config/pix | ||
293 | blacklist ${HOME}/.config/pluma | ||
294 | blacklist ${HOME}/.config/ppsspp | ||
295 | blacklist ${HOME}/.config/pragha | ||
296 | blacklist ${HOME}/.config/profanity | ||
297 | blacklist ${HOME}/.config/psi+ | ||
298 | blacklist ${HOME}/.config/qBittorrent | ||
299 | blacklist ${HOME}/.config/qBittorrentrc | ||
300 | blacklist ${HOME}/.config/qpdfview | ||
301 | blacklist ${HOME}/.config/qupzilla | ||
302 | blacklist ${HOME}/.config/qutebrowser | ||
303 | blacklist ${HOME}/.config/ranger | ||
304 | blacklist ${HOME}/.config/redshift | ||
305 | blacklist ${HOME}/.config/redshift.conf | ||
306 | blacklist ${HOME}/.config/remmina | ||
307 | blacklist ${HOME}/.config/ristretto | ||
308 | blacklist ${HOME}/.config/rtv | ||
309 | blacklist ${HOME}/.config/scribus | ||
310 | blacklist ${HOME}/.config/scribusrc | ||
311 | blacklist ${HOME}/.config/sinew.in | ||
312 | blacklist ${HOME}/.config/skypeforlinux | ||
313 | blacklist ${HOME}/.config/slimjet | ||
314 | blacklist ${HOME}/.config/smplayer | ||
315 | blacklist ${HOME}/.config/smtube | ||
316 | blacklist ${HOME}/.config/snox | ||
317 | blacklist ${HOME}/.config/sound-juicer | ||
318 | blacklist ${HOME}/.config/specialmailcollectionsrc | ||
319 | blacklist ${HOME}/.config/spotify | ||
320 | blacklist ${HOME}/.config/sqlitebrowser | ||
321 | blacklist ${HOME}/.config/stellarium | ||
322 | blacklist ${HOME}/.config/supertuxkart | ||
323 | blacklist ${HOME}/.config/synfig | ||
324 | blacklist ${HOME}/.config/teams | ||
325 | blacklist ${HOME}/.config/telepathy-account-widgets | ||
326 | blacklist ${HOME}/.config/torbrowser | ||
327 | blacklist ${HOME}/.config/totem | ||
328 | blacklist ${HOME}/.config/tox | ||
329 | blacklist ${HOME}/.config/transgui | ||
330 | blacklist ${HOME}/.config/transmission | ||
331 | blacklist ${HOME}/.config/truecraft | ||
332 | blacklist ${HOME}/.config/tvbrowser | ||
333 | blacklist ${HOME}/.config/uGet | ||
334 | blacklist ${HOME}/.config/uzbl | ||
335 | blacklist ${HOME}/.config/viewnior | ||
336 | blacklist ${HOME}/.config/vivaldi | ||
337 | blacklist ${HOME}/.config/vivaldi-snapshot | ||
338 | blacklist ${HOME}/.config/vlc | ||
339 | blacklist ${HOME}/.config/wesnoth | ||
340 | blacklist ${HOME}/.config/wormux | ||
341 | blacklist ${HOME}/.config/Whalebird | ||
342 | blacklist ${HOME}/.config/wireshark | ||
343 | blacklist ${HOME}/.config/xchat | ||
344 | blacklist ${HOME}/.config/xed | ||
345 | blacklist ${HOME}/.config/xfburn | ||
346 | blacklist ${HOME}/.config/xfce4/xfce4-notes.gtkrc | ||
347 | blacklist ${HOME}/.config/xfce4/xfce4-notes.rc | ||
348 | blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml | ||
349 | blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-mixer.xml | ||
350 | blacklist ${HOME}/.config/xfce4-dict | ||
351 | blacklist ${HOME}/.config/xiaoyong | ||
352 | blacklist ${HOME}/.config/xmms2 | ||
353 | blacklist ${HOME}/.config/xplayer | ||
354 | blacklist ${HOME}/.config/xreader | ||
355 | blacklist ${HOME}/.config/xviewer | ||
356 | blacklist ${HOME}/.config/yandex-browser | ||
357 | blacklist ${HOME}/.config/yandex-browser-beta | ||
358 | blacklist ${HOME}/.config/yelp | ||
359 | blacklist ${HOME}/.config/youtube-dl | ||
360 | blacklist ${HOME}/.config/zathura | ||
361 | blacklist ${HOME}/.config/zoomus.conf | ||
362 | blacklist ${HOME}/.config/Zulip | ||
363 | blacklist ${HOME}/.conkeror.mozdev.org | ||
364 | blacklist ${HOME}/.crawl | ||
365 | blacklist ${HOME}/.curlrc | ||
366 | blacklist ${HOME}/.dashcore | ||
367 | blacklist ${HOME}/.devilspie | ||
368 | blacklist ${HOME}/.dia | ||
369 | blacklist ${HOME}/.digrc | ||
370 | blacklist ${HOME}/.dillo | ||
371 | blacklist ${HOME}/.dooble | ||
372 | blacklist ${HOME}/.dosbox | ||
373 | blacklist ${HOME}/.dropbox* | ||
374 | blacklist ${HOME}/.easystroke | ||
375 | blacklist ${HOME}/.electron-cache | ||
376 | blacklist ${HOME}/.electrum* | ||
377 | blacklist ${HOME}/.elinks | ||
378 | blacklist ${HOME}/.emacs | ||
379 | blacklist ${HOME}/.emacs.d | ||
380 | blacklist ${HOME}/.ethereum | ||
381 | blacklist ${HOME}/.etr | ||
382 | blacklist ${HOME}/.filezilla | ||
383 | blacklist ${HOME}/.flowblade | ||
384 | blacklist ${HOME}/.fltk | ||
385 | blacklist ${HOME}/.fossamail | ||
386 | blacklist ${HOME}/.freeciv | ||
387 | blacklist ${HOME}/.freecol | ||
388 | blacklist ${HOME}/.freemind | ||
389 | blacklist ${HOME}/.frogatto | ||
390 | blacklist ${HOME}/.frozen-bubble | ||
391 | blacklist ${HOME}/.gimp* | ||
392 | blacklist ${HOME}/.gist | ||
393 | blacklist ${HOME}/.gitconfig | ||
394 | blacklist ${HOME}/.gnome/gnome-schedule | ||
395 | blacklist ${HOME}/.googleearth/Cache | ||
396 | blacklist ${HOME}/.googleearth/Temp | ||
397 | blacklist ${HOME}/.googleearth/myplaces.backup.kml | ||
398 | blacklist ${HOME}/.googleearth/myplaces.kml | ||
399 | blacklist ${HOME}/.gradle | ||
400 | blacklist ${HOME}/.gramps | ||
401 | blacklist ${HOME}/.guayadeque | ||
402 | blacklist ${HOME}/.hashcat | ||
403 | blacklist ${HOME}/.hedgewars | ||
404 | blacklist ${HOME}/.hugin | ||
405 | blacklist ${HOME}/.i2p | ||
406 | blacklist ${HOME}/.icedove | ||
407 | blacklist ${HOME}/.imagej | ||
408 | blacklist ${HOME}/.inkscape | ||
409 | blacklist ${HOME}/.itch | ||
410 | blacklist ${HOME}/.jack-server | ||
411 | blacklist ${HOME}/.jack-settings | ||
412 | blacklist ${HOME}/.jak | ||
413 | blacklist ${HOME}/.java | ||
414 | blacklist ${HOME}/.jd | ||
415 | blacklist ${HOME}/.jitsi | ||
416 | blacklist ${HOME}/.jumpnbump | ||
417 | blacklist ${HOME}/.kde/share/apps/digikam | ||
418 | blacklist ${HOME}/.kde/share/apps/gwenview | ||
419 | blacklist ${HOME}/.kde/share/apps/kaffeine | ||
420 | blacklist ${HOME}/.kde/share/apps/kcookiejar | ||
421 | blacklist ${HOME}/.kde/share/apps/kget | ||
422 | blacklist ${HOME}/.kde/share/apps/khtml | ||
423 | blacklist ${HOME}/.kde/share/apps/klatexformula | ||
424 | blacklist ${HOME}/.kde/share/apps/konqsidebartng | ||
425 | blacklist ${HOME}/.kde/share/apps/konqueror | ||
426 | blacklist ${HOME}/.kde/share/apps/kopete | ||
427 | blacklist ${HOME}/.kde/share/apps/ktorrent | ||
428 | blacklist ${HOME}/.kde/share/apps/okular | ||
429 | blacklist ${HOME}/.kde/share/config/baloofilerc | ||
430 | blacklist ${HOME}/.kde/share/config/baloorc | ||
431 | blacklist ${HOME}/.kde/share/config/digikam | ||
432 | blacklist ${HOME}/.kde/share/config/gwenviewrc | ||
433 | blacklist ${HOME}/.kde/share/config/k3brc | ||
434 | blacklist ${HOME}/.kde/share/config/kaffeinerc | ||
435 | blacklist ${HOME}/.kde/share/config/kcookiejarrc | ||
436 | blacklist ${HOME}/.kde/share/config/kfindrc | ||
437 | blacklist ${HOME}/.kde/share/config/kgetrc | ||
438 | blacklist ${HOME}/.kde/share/config/khtmlrc | ||
439 | blacklist ${HOME}/.kde/share/config/klipperrc | ||
440 | blacklist ${HOME}/.kde/share/config/kmplayerrc | ||
441 | blacklist ${HOME}/.kde/share/config/konq_history | ||
442 | blacklist ${HOME}/.kde/share/config/konqsidebartngrc | ||
443 | blacklist ${HOME}/.kde/share/config/konquerorrc | ||
444 | blacklist ${HOME}/.kde/share/config/konversationrc | ||
445 | blacklist ${HOME}/.kde/share/config/kopeterc | ||
446 | blacklist ${HOME}/.kde/share/config/ktorrentrc | ||
447 | blacklist ${HOME}/.kde/share/config/okularpartrc | ||
448 | blacklist ${HOME}/.kde/share/config/okularrc | ||
449 | blacklist ${HOME}/.kde4/share/apps/digikam | ||
450 | blacklist ${HOME}/.kde4/share/apps/gwenview | ||
451 | blacklist ${HOME}/.kde4/share/apps/kaffeine | ||
452 | blacklist ${HOME}/.kde4/share/apps/kcookiejar | ||
453 | blacklist ${HOME}/.kde4/share/apps/kget | ||
454 | blacklist ${HOME}/.kde4/share/apps/khtml | ||
455 | blacklist ${HOME}/.kde4/share/apps/konqsidebartng | ||
456 | blacklist ${HOME}/.kde4/share/apps/konqueror | ||
457 | blacklist ${HOME}/.kde4/share/apps/kopete | ||
458 | blacklist ${HOME}/.kde4/share/apps/ktorrent | ||
459 | blacklist ${HOME}/.kde4/share/apps/okular | ||
460 | blacklist ${HOME}/.kde4/share/config/baloofilerc | ||
461 | blacklist ${HOME}/.kde4/share/config/baloorc | ||
462 | blacklist ${HOME}/.kde4/share/config/digikam | ||
463 | blacklist ${HOME}/.kde4/share/config/gwenviewrc | ||
464 | blacklist ${HOME}/.kde4/share/config/k3brc | ||
465 | blacklist ${HOME}/.kde4/share/config/kaffeinerc | ||
466 | blacklist ${HOME}/.kde4/share/config/kcookiejarrc | ||
467 | blacklist ${HOME}/.kde4/share/config/kfindrc | ||
468 | blacklist ${HOME}/.kde4/share/config/kgetrc | ||
469 | blacklist ${HOME}/.kde4/share/config/khtmlrc | ||
470 | blacklist ${HOME}/.kde4/share/config/klipperrc | ||
471 | blacklist ${HOME}/.kde4/share/config/konq_history | ||
472 | blacklist ${HOME}/.kde4/share/config/konqsidebartngrc | ||
473 | blacklist ${HOME}/.kde4/share/config/konquerorrc | ||
474 | blacklist ${HOME}/.kde4/share/config/konversationrc | ||
475 | blacklist ${HOME}/.kde4/share/config/kopeterc | ||
476 | blacklist ${HOME}/.kde4/share/config/ktorrentrc | ||
477 | blacklist ${HOME}/.kde4/share/config/okularpartrc | ||
478 | blacklist ${HOME}/.kde4/share/config/okularrc | ||
479 | blacklist ${HOME}/.killingfloor | ||
480 | blacklist ${HOME}/.kingsoft | ||
481 | blacklist ${HOME}/.kino-history | ||
482 | blacklist ${HOME}/.kinorc | ||
483 | blacklist ${HOME}/.klatexformula | ||
484 | blacklist ${HOME}/.kodi | ||
485 | blacklist ${HOME}/.lincity-ng | ||
486 | blacklist ${HOME}/.links | ||
487 | blacklist ${HOME}/.linphone-history.db | ||
488 | blacklist ${HOME}/.linphonerc | ||
489 | blacklist ${HOME}/.lmmsrc.xml | ||
490 | blacklist ${HOME}/.local/lib/vivaldi | ||
491 | blacklist ${HOME}/.local/share/0ad | ||
492 | blacklist ${HOME}/.local/share/3909/PapersPlease | ||
493 | blacklist ${HOME}/.local/share/Anki2 | ||
494 | blacklist ${HOME}/.local/share/Empathy | ||
495 | blacklist ${HOME}/.local/share/Enpass | ||
496 | blacklist ${HOME}/.local/share/JetBrains | ||
497 | blacklist ${HOME}/.local/share/Kingsoft | ||
498 | blacklist ${HOME}/.local/share/Mendeley Ltd. | ||
499 | blacklist ${HOME}/.local/share/Mumble | ||
500 | blacklist ${HOME}/.local/share/PBE | ||
501 | blacklist ${HOME}/.local/share/QGIS | ||
502 | blacklist ${HOME}/.local/share/QMediathekView | ||
503 | blacklist ${HOME}/.local/share/QuiteRss | ||
504 | blacklist ${HOME}/.local/share/Ricochet | ||
505 | blacklist ${HOME}/.local/share/Shortwave | ||
506 | blacklist ${HOME}/.local/share/Steam | ||
507 | blacklist ${HOME}/.local/share/SuperHexagon | ||
508 | blacklist ${HOME}/.local/share/TelegramDesktop | ||
509 | blacklist ${HOME}/.local/share/Terraria | ||
510 | blacklist ${HOME}/.local/share/TpLogger | ||
511 | blacklist ${HOME}/.local/share/Zeal | ||
512 | blacklist ${HOME}/.local/share/akonadi* | ||
513 | blacklist ${HOME}/.local/share/akregator | ||
514 | blacklist ${HOME}/.local/share/agenda | ||
515 | blacklist ${HOME}/.local/share/apps/korganizer | ||
516 | blacklist ${HOME}/.local/share/aspyr-media | ||
517 | blacklist ${HOME}/.local/share/autokey | ||
518 | blacklist ${HOME}/.local/share/baloo | ||
519 | blacklist ${HOME}/.local/share/barrier | ||
520 | blacklist ${HOME}/.local/share/bibletime | ||
521 | blacklist ${HOME}/.local/share/caja-python | ||
522 | blacklist ${HOME}/.local/share/cantata | ||
523 | blacklist ${HOME}/.local/share/cdprojektred | ||
524 | blacklist ${HOME}/.local/share/clipit | ||
525 | blacklist ${HOME}/.local/share/com.github.johnfactotum.Foliate | ||
526 | blacklist ${HOME}/.local/share/contacts | ||
527 | blacklist ${HOME}/.local/share/data/Mendeley Ltd. | ||
528 | blacklist ${HOME}/.local/share/data/Mumble | ||
529 | blacklist ${HOME}/.local/share/data/MusE | ||
530 | blacklist ${HOME}/.local/share/data/MuseScore | ||
531 | blacklist ${HOME}/.local/share/data/nomacs | ||
532 | blacklist ${HOME}/.local/share/data/qBittorrent | ||
533 | blacklist ${HOME}/.local/share/dino | ||
534 | blacklist ${HOME}/.local/share/dolphin | ||
535 | blacklist ${HOME}/.local/share/emailidentities | ||
536 | blacklist ${HOME}/.local/share/epiphany | ||
537 | blacklist ${HOME}/.local/share/evolution | ||
538 | blacklist ${HOME}/.local/share/feedreader | ||
539 | blacklist ${HOME}/.local/share/feral-interactive | ||
540 | blacklist ${HOME}/.local/share/five-or-more | ||
541 | blacklist ${HOME}/.local/share/freecol | ||
542 | blacklist ${HOME}/.local/share/gajim | ||
543 | blacklist ${HOME}/.local/share/geary | ||
544 | blacklist ${HOME}/.local/share/geeqie | ||
545 | blacklist ${HOME}/.local/share/ghostwriter | ||
546 | blacklist ${HOME}/.local/share/gitg | ||
547 | blacklist ${HOME}/.local/share/gnome-2048 | ||
548 | blacklist ${HOME}/.local/share/gnome-chess | ||
549 | blacklist ${HOME}/.local/share/gnome-builder | ||
550 | blacklist ${HOME}/.local/share/gnome-klotski | ||
551 | blacklist ${HOME}/.local/share/gnome-latex | ||
552 | blacklist ${HOME}/.local/share/gnome-mines | ||
553 | blacklist ${HOME}/.local/share/gnome-music | ||
554 | blacklist ${HOME}/.local/share/gnome-nibbles | ||
555 | blacklist ${HOME}/.local/share/gnome-photos | ||
556 | blacklist ${HOME}/.local/share/gnome-pomodoro | ||
557 | blacklist ${HOME}/.local/share/gnome-recipes | ||
558 | blacklist ${HOME}/.local/share/gnome-ring | ||
559 | blacklist ${HOME}/.local/share/gnome-sudoku | ||
560 | blacklist ${HOME}/.local/share/gnome-twitch | ||
561 | blacklist ${HOME}/.local/share/godot | ||
562 | blacklist ${HOME}/.local/share/gradio | ||
563 | blacklist ${HOME}/.local/share/gwenview | ||
564 | blacklist ${HOME}/.local/share/i2p | ||
565 | blacklist ${HOME}/.local/share/kaffeine | ||
566 | blacklist ${HOME}/.local/share/kalgebra | ||
567 | blacklist ${HOME}/.local/share/kate | ||
568 | blacklist ${HOME}/.local/share/kdenlive | ||
569 | blacklist ${HOME}/.local/share/kget | ||
570 | blacklist ${HOME}/.local/share/kiwix | ||
571 | blacklist ${HOME}/.local/share/kiwix-desktop | ||
572 | blacklist ${HOME}/.local/share/klavaro | ||
573 | blacklist ${HOME}/.local/share/kmail2 | ||
574 | blacklist ${HOME}/.local/share/kmplayer | ||
575 | blacklist ${HOME}/.local/share/knotes | ||
576 | blacklist ${HOME}/.local/share/krita | ||
577 | blacklist ${HOME}/.local/share/ktorrent | ||
578 | blacklist ${HOME}/.local/share/ktorrentrc | ||
579 | blacklist ${HOME}/.local/share/ktouch | ||
580 | blacklist ${HOME}/.local/share/kwrite | ||
581 | blacklist ${HOME}/.local/share/liferea | ||
582 | blacklist ${HOME}/.local/share/local-mail | ||
583 | blacklist ${HOME}/.local/share/lollypop | ||
584 | blacklist ${HOME}/.local/share/love | ||
585 | blacklist ${HOME}/.local/share/lugaru | ||
586 | blacklist ${HOME}/.local/share/mana | ||
587 | blacklist ${HOME}/.local/share/maps-places.json | ||
588 | blacklist ${HOME}/.local/share/meld | ||
589 | blacklist ${HOME}/.local/share/midori | ||
590 | blacklist ${HOME}/.local/share/multimc | ||
591 | blacklist ${HOME}/.local/share/multimc5 | ||
592 | blacklist ${HOME}/.local/share/mupen64plus | ||
593 | blacklist ${HOME}/.local/share/mypaint | ||
594 | blacklist ${HOME}/.local/share/nautilus | ||
595 | blacklist ${HOME}/.local/share/nautilus-python | ||
596 | blacklist ${HOME}/.local/share/nemo | ||
597 | blacklist ${HOME}/.local/share/nemo-python | ||
598 | blacklist ${HOME}/.local/share/nomacs | ||
599 | blacklist ${HOME}/.local/share/notes | ||
600 | blacklist ${HOME}/.local/share/ocenaudio | ||
601 | blacklist ${HOME}/.local/share/okular | ||
602 | blacklist ${HOME}/.local/share/onlyoffice | ||
603 | blacklist ${HOME}/.local/share/orage | ||
604 | blacklist ${HOME}/.local/share/org.kde.gwenview | ||
605 | blacklist ${HOME}/.local/share/pix | ||
606 | blacklist ${HOME}/.local/share/plasma_notes | ||
607 | blacklist ${HOME}/.local/share/profanity | ||
608 | blacklist ${HOME}/.local/share/psi+ | ||
609 | blacklist ${HOME}/.local/share/qpdfview | ||
610 | blacklist ${HOME}/.local/share/qutebrowser | ||
611 | blacklist ${HOME}/.local/share/remmina | ||
612 | blacklist ${HOME}/.local/share/rhythmbox | ||
613 | blacklist ${HOME}/.local/share/rtv | ||
614 | blacklist ${HOME}/.local/share/scribus | ||
615 | blacklist ${HOME}/.local/share/signal-cli | ||
616 | blacklist ${HOME}/.local/share/spotify | ||
617 | blacklist ${HOME}/.local/share/steam | ||
618 | blacklist ${HOME}/.local/share/supertux2 | ||
619 | blacklist ${HOME}/.local/share/supertuxkart | ||
620 | blacklist ${HOME}/.local/share/swell-foop | ||
621 | blacklist ${HOME}/.local/share/telepathy | ||
622 | blacklist ${HOME}/.local/share/terasology | ||
623 | blacklist ${HOME}/.local/share/torbrowser | ||
624 | blacklist ${HOME}/.local/share/totem | ||
625 | blacklist ${HOME}/.local/share/uzbl | ||
626 | blacklist ${HOME}/.local/share/vlc | ||
627 | blacklist ${HOME}/.local/share/vpltd | ||
628 | blacklist ${HOME}/.local/share/vulkan | ||
629 | blacklist ${HOME}/.local/share/warsow-2.1 | ||
630 | blacklist ${HOME}/.local/share/wesnoth | ||
631 | blacklist ${HOME}/.local/share/wormux | ||
632 | blacklist ${HOME}/.local/share/xplayer | ||
633 | blacklist ${HOME}/.local/share/xreader | ||
634 | blacklist ${HOME}/.local/share/zathura | ||
635 | blacklist ${HOME}/.lv2 | ||
636 | blacklist ${HOME}/.magicor | ||
637 | blacklist ${HOME}/.masterpdfeditor | ||
638 | blacklist ${HOME}/.mcabber | ||
639 | blacklist ${HOME}/.mcabberrc | ||
640 | blacklist ${HOME}/.mediathek3 | ||
641 | blacklist ${HOME}/.megaglest | ||
642 | blacklist ${HOME}/.minetest | ||
643 | blacklist ${HOME}/.mirrormagic | ||
644 | blacklist ${HOME}/.moonchild productions/basilisk | ||
645 | blacklist ${HOME}/.moonchild productions/pale moon | ||
646 | blacklist ${HOME}/.mozilla | ||
647 | blacklist ${HOME}/.mp3splt-gtk | ||
648 | blacklist ${HOME}/.mpd | ||
649 | blacklist ${HOME}/.mpdconf | ||
650 | blacklist ${HOME}/.mplayer | ||
651 | blacklist ${HOME}/.msmtprc | ||
652 | blacklist ${HOME}/.multimc5 | ||
653 | blacklist ${HOME}/.nanorc | ||
654 | blacklist ${HOME}/.netactview | ||
655 | blacklist ${HOME}/.neverball | ||
656 | blacklist ${HOME}/.newsbeuter | ||
657 | blacklist ${HOME}/.newsboat | ||
658 | blacklist ${HOME}/.nicotine | ||
659 | blacklist ${HOME}/.nv | ||
660 | blacklist ${HOME}/.nylas-mail | ||
661 | blacklist ${HOME}/.openarena | ||
662 | blacklist ${HOME}/.opencity | ||
663 | blacklist ${HOME}/.openinvaders | ||
664 | blacklist ${HOME}/.openshot | ||
665 | blacklist ${HOME}/.openshot_qt | ||
666 | blacklist ${HOME}/.openttd | ||
667 | blacklist ${HOME}/.opera | ||
668 | blacklist ${HOME}/.opera-beta | ||
669 | blacklist ${HOME}/.ostrichriders | ||
670 | blacklist ${HOME}/.parallelrealities/blobwars | ||
671 | blacklist ${HOME}/.penguin-command | ||
672 | blacklist ${HOME}/.pingus | ||
673 | blacklist ${HOME}/.pioneer | ||
674 | blacklist ${HOME}/.purple | ||
675 | blacklist ${HOME}/.qemu-launcher | ||
676 | blacklist ${HOME}/.qgis2 | ||
677 | blacklist ${HOME}/.qmmp | ||
678 | blacklist ${HOME}/.quodlibet | ||
679 | blacklist ${HOME}/.redeclipse | ||
680 | blacklist ${HOME}/.remmina | ||
681 | blacklist ${HOME}/.repo_.gitconfig.json | ||
682 | blacklist ${HOME}/.repoconfig | ||
683 | blacklist ${HOME}/.retroshare | ||
684 | blacklist ${HOME}/.ripperXrc | ||
685 | blacklist ${HOME}/.scorched3d | ||
686 | blacklist ${HOME}/.scribus | ||
687 | blacklist ${HOME}/.scribusrc | ||
688 | blacklist ${HOME}/.simutrans | ||
689 | blacklist ${HOME}/.smartgit/*/passwords | ||
690 | blacklist ${HOME}/.ssr | ||
691 | blacklist ${HOME}/.steam | ||
692 | blacklist ${HOME}/.steampath | ||
693 | blacklist ${HOME}/.steampid | ||
694 | blacklist ${HOME}/.stellarium | ||
695 | blacklist ${HOME}/.subversion | ||
696 | blacklist ${HOME}/.surf | ||
697 | blacklist ${HOME}/.swb.ini | ||
698 | blacklist ${HOME}/.sword | ||
699 | blacklist ${HOME}/.sylpheed-2.0 | ||
700 | blacklist ${HOME}/.synfig | ||
701 | blacklist ${HOME}/.config/teams-for-linux | ||
702 | blacklist ${HOME}/.tb | ||
703 | blacklist ${HOME}/.tconn | ||
704 | blacklist ${HOME}/.teeworlds | ||
705 | blacklist ${HOME}/.thunderbird | ||
706 | blacklist ${HOME}/.tilp | ||
707 | blacklist ${HOME}/.tooling | ||
708 | blacklist ${HOME}/.tor-browser* | ||
709 | blacklist ${HOME}/.torcs | ||
710 | blacklist ${HOME}/.tremulous | ||
711 | blacklist ${HOME}/.ts3client | ||
712 | blacklist ${HOME}/.tuxguitar* | ||
713 | blacklist ${HOME}/.tvbrowser | ||
714 | blacklist ${HOME}/.unknown-horizons | ||
715 | blacklist ${HOME}/.viking | ||
716 | blacklist ${HOME}/.viking-maps | ||
717 | blacklist ${HOME}/.vim | ||
718 | blacklist ${HOME}/.vimrc | ||
719 | blacklist ${HOME}/.vscode | ||
720 | blacklist ${HOME}/.vscode-oss | ||
721 | blacklist ${HOME}/.vst | ||
722 | blacklist ${HOME}/.vultures | ||
723 | blacklist ${HOME}/.w3m | ||
724 | blacklist ${HOME}/.warzone2100-3.* | ||
725 | blacklist ${HOME}/.waterfox | ||
726 | blacklist ${HOME}/.weechat | ||
727 | blacklist ${HOME}/.wget-hsts | ||
728 | blacklist ${HOME}/.wgetrc | ||
729 | blacklist ${HOME}/.widelands | ||
730 | blacklist ${HOME}/.wine | ||
731 | blacklist ${HOME}/.wine64 | ||
732 | blacklist ${HOME}/.wireshark | ||
733 | blacklist ${HOME}/.wordwarvi | ||
734 | blacklist ${HOME}/.wormux | ||
735 | blacklist ${HOME}/.xiphos | ||
736 | blacklist ${HOME}/.xmind | ||
737 | blacklist ${HOME}/.xmms | ||
738 | blacklist ${HOME}/.xmr-stak | ||
739 | blacklist ${HOME}/.xonotic | ||
740 | blacklist ${HOME}/.xpdfrc | ||
741 | blacklist ${HOME}/.zoom | ||
742 | blacklist /tmp/akonadi-* | ||
743 | blacklist /tmp/ssh-* | ||
744 | blacklist /tmp/.wine-* | ||
745 | blacklist /var/games/nethack | ||
746 | blacklist /var/games/slashem | ||
747 | blacklist /var/games/vulturesclaw | ||
748 | blacklist /var/games/vultureseye | ||
749 | blacklist /var/lib/games/Maelstrom-Scores | ||
750 | |||
751 | # ${HOME}/.cache directory | ||
752 | blacklist ${HOME}/.cache/0ad | ||
753 | blacklist ${HOME}/.cache/8pecxstudios | ||
754 | blacklist ${HOME}/.cache/Authenticator | ||
755 | blacklist ${HOME}/.cache/BraveSoftware | ||
756 | blacklist ${HOME}/.cache/Clementine | ||
757 | blacklist ${HOME}/.cache/Enox | ||
758 | blacklist ${HOME}/.cache/Enpass | ||
759 | blacklist ${HOME}/.cache/Ferdi | ||
760 | blacklist ${HOME}/.cache/Franz | ||
761 | blacklist ${HOME}/.cache/INRIA | ||
762 | blacklist ${HOME}/.cache/MusicBrainz | ||
763 | blacklist ${HOME}/.cache/QuiteRss | ||
764 | blacklist ${HOME}/.cache/Shortwave | ||
765 | blacklist ${HOME}/.cache/Tox | ||
766 | blacklist ${HOME}/.cache/Zeal | ||
767 | blacklist ${HOME}/.cache/agenda | ||
768 | blacklist ${HOME}/.cache/akonadi* | ||
769 | blacklist ${HOME}/.cache/atril | ||
770 | blacklist ${HOME}/.cache/attic | ||
771 | blacklist ${HOME}/.cache/babl | ||
772 | blacklist ${HOME}/.cache/bnox | ||
773 | blacklist ${HOME}/.cache/borg | ||
774 | blacklist ${HOME}/.cache/calibre | ||
775 | blacklist ${HOME}/.cache/cantata | ||
776 | blacklist ${HOME}/.cache/champlain | ||
777 | blacklist ${HOME}/.cache/chromium | ||
778 | blacklist ${HOME}/.cache/chromium-dev | ||
779 | blacklist ${HOME}/.cache/cliqz | ||
780 | blacklist ${HOME}/.cache/com.github.johnfactotum.Foliate | ||
781 | blacklist ${HOME}/.cache/darktable | ||
782 | blacklist ${HOME}/.cache/discover | ||
783 | blacklist ${HOME}/.cache/dnox | ||
784 | blacklist ${HOME}/.cache/dolphin | ||
785 | blacklist ${HOME}/.cache/ephemeral | ||
786 | blacklist ${HOME}/.cache/epiphany | ||
787 | blacklist ${HOME}/.cache/evolution | ||
788 | blacklist ${HOME}/.cache/falkon | ||
789 | blacklist ${HOME}/.cache/feedreader | ||
790 | blacklist ${HOME}/.cache/font-manager | ||
791 | blacklist ${HOME}/.cache/fossamail | ||
792 | blacklist ${HOME}/.cache/freecol | ||
793 | blacklist ${HOME}/.cache/gajim | ||
794 | blacklist ${HOME}/.cache/gegl-0.4 | ||
795 | blacklist ${HOME}/.cache/geeqie | ||
796 | blacklist ${HOME}/.cache/gfeeds | ||
797 | blacklist ${HOME}/.cache/gimp | ||
798 | blacklist ${HOME}/.cache/gnome-builder | ||
799 | blacklist ${HOME}/.cache/gnome-recipes | ||
800 | blacklist ${HOME}/.cache/gnome-screenshot | ||
801 | blacklist ${HOME}/.cache/gnome-twitch | ||
802 | blacklist ${HOME}/.cache/godot | ||
803 | blacklist ${HOME}/.cache/google-chrome | ||
804 | blacklist ${HOME}/.cache/google-chrome-beta | ||
805 | blacklist ${HOME}/.cache/google-chrome-unstable | ||
806 | blacklist ${HOME}/.cache/gradio | ||
807 | blacklist ${HOME}/.cache/gummi | ||
808 | blacklist ${HOME}/.cache/icedove | ||
809 | blacklist ${HOME}/.cache/INRIA/Natron | ||
810 | blacklist ${HOME}/.cache/inkscape | ||
811 | blacklist ${HOME}/.cache/inox | ||
812 | blacklist ${HOME}/.cache/iridium | ||
813 | blacklist ${HOME}/.cache/kcmshell5 | ||
814 | blacklist ${HOME}/.cache/kdenlive | ||
815 | blacklist ${HOME}/.cache/kfind | ||
816 | blacklist ${HOME}/.cache/kinfocenter | ||
817 | blacklist ${HOME}/.cache/kmail2 | ||
818 | blacklist ${HOME}/.cache/krunner | ||
819 | blacklist ${HOME}/.cache/krunnerbookmarkrunnerfirefoxdbfile.sqlite* | ||
820 | blacklist ${HOME}/.cache/kscreenlocker_greet | ||
821 | blacklist ${HOME}/.cache/ksmserver-logout-greeter | ||
822 | blacklist ${HOME}/.cache/ksplashqml | ||
823 | blacklist ${HOME}/.cache/kwin | ||
824 | blacklist ${HOME}/.cache/libgweather | ||
825 | blacklist ${HOME}/.cache/liferea | ||
826 | blacklist ${HOME}/.cache/Mendeley Ltd. | ||
827 | blacklist ${HOME}/.cache/midori | ||
828 | blacklist ${HOME}/.cache/minetest | ||
829 | blacklist ${HOME}/.cache/moonchild productions/basilisk | ||
830 | blacklist ${HOME}/.cache/moonchild productions/pale moon | ||
831 | blacklist ${HOME}/.cache/mozilla | ||
832 | blacklist ${HOME}/.cache/ms-excel-online | ||
833 | blacklist ${HOME}/.cache/ms-office-online | ||
834 | blacklist ${HOME}/.cache/ms-onenote-online | ||
835 | blacklist ${HOME}/.cache/ms-outlook-online | ||
836 | blacklist ${HOME}/.cache/ms-powerpoint-online | ||
837 | blacklist ${HOME}/.cache/ms-skype-online | ||
838 | blacklist ${HOME}/.cache/ms-word-online | ||
839 | blacklist ${HOME}/.cache/mutt | ||
840 | blacklist ${HOME}/.cache/mypaint | ||
841 | blacklist ${HOME}/.cache/nheko/nheko | ||
842 | blacklist ${HOME}/.cache/netsurf | ||
843 | blacklist ${HOME}/.cache/okular | ||
844 | blacklist ${HOME}/.cache/opera | ||
845 | blacklist ${HOME}/.cache/opera-beta | ||
846 | blacklist ${HOME}/.cache/org.gabmus.gfeeds | ||
847 | blacklist ${HOME}/.cache/org.gnome.Books | ||
848 | blacklist ${HOME}/.cache/org.gnome.Maps | ||
849 | blacklist ${HOME}/.cache/pdfmod | ||
850 | blacklist ${HOME}/.cache/peek | ||
851 | blacklist ${HOME}/.cache/plasmashell | ||
852 | blacklist ${HOME}/.cache/plasmashellbookmarkrunnerfirefoxdbfile.sqlite* | ||
853 | blacklist ${HOME}/.cache/qBittorrent | ||
854 | blacklist ${HOME}/.cache/qupzilla | ||
855 | blacklist ${HOME}/.cache/qutebrowser | ||
856 | blacklist ${HOME}/.cache/rhythmbox | ||
857 | blacklist ${HOME}/.cache/simple-scan | ||
858 | blacklist ${HOME}/.cache/slimjet | ||
859 | blacklist ${HOME}/.cache/snox | ||
860 | blacklist ${HOME}/.cache/spotify | ||
861 | blacklist ${HOME}/.cache/supertuxkart | ||
862 | blacklist ${HOME}/.cache/systemsettings | ||
863 | blacklist ${HOME}/.cache/telepathy | ||
864 | blacklist ${HOME}/.cache/thunderbird | ||
865 | blacklist ${HOME}/.cache/torbrowser | ||
866 | blacklist ${HOME}/.cache/transmission | ||
867 | blacklist ${HOME}/.cache/vivaldi | ||
868 | blacklist ${HOME}/.cache/vivaldi-snapshot | ||
869 | blacklist ${HOME}/.cache/vlc | ||
870 | blacklist ${HOME}/.cache/warsow-2.1 | ||
871 | blacklist ${HOME}/.cache/waterfox | ||
872 | blacklist ${HOME}/.cache/wesnoth | ||
873 | blacklist ${HOME}/.cache/xmms2 | ||
874 | blacklist ${HOME}/.cache/xreader | ||
875 | blacklist ${HOME}/.cache/yandex-browser | ||
876 | blacklist ${HOME}/.cache/yandex-browser-beta | ||
877 | blacklist ${HOME}/.cache/youtube-dl | ||
diff --git a/etc/inc/disable-xdg.inc b/etc/inc/disable-xdg.inc new file mode 100644 index 000000000..22acf272d --- /dev/null +++ b/etc/inc/disable-xdg.inc | |||
@@ -0,0 +1,12 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include disable-xdg.local | ||
4 | |||
5 | blacklist ${DOCUMENTS} | ||
6 | blacklist ${MUSIC} | ||
7 | blacklist ${PICTURES} | ||
8 | blacklist ${VIDEOS} | ||
9 | |||
10 | # The following should be considered catch-all directories | ||
11 | #blacklist ${DESKTOP} | ||
12 | #blacklist ${DOWNLOADS} | ||
diff --git a/etc/inc/feh-network.inc b/etc/inc/feh-network.inc new file mode 100644 index 000000000..e94e7205c --- /dev/null +++ b/etc/inc/feh-network.inc | |||
@@ -0,0 +1,4 @@ | |||
1 | ignore net none | ||
2 | netfilter | ||
3 | protocol unix,inet,inet6 | ||
4 | private-etc ca-certificates,crypto-policies,hosts,pki,resolv.conf,ssl | ||
diff --git a/etc/inc/firefox-common-addons.inc b/etc/inc/firefox-common-addons.inc new file mode 100644 index 000000000..681e72d33 --- /dev/null +++ b/etc/inc/firefox-common-addons.inc | |||
@@ -0,0 +1,69 @@ | |||
1 | # This file is overwritten during software install. | ||
2 | # Persistent customizations should go in a .local file. | ||
3 | include firefox-common-addons.local | ||
4 | |||
5 | noblacklist ${HOME}/.config/kgetrc | ||
6 | noblacklist ${HOME}/.config/okularpartrc | ||
7 | noblacklist ${HOME}/.config/okularrc | ||
8 | noblacklist ${HOME}/.config/qpdfview | ||
9 | noblacklist ${HOME}/.kde/share/apps/kget | ||
10 | noblacklist ${HOME}/.kde/share/apps/okular | ||
11 | noblacklist ${HOME}/.kde/share/config/kgetrc | ||
12 | noblacklist ${HOME}/.kde/share/config/okularpartrc | ||
13 | noblacklist ${HOME}/.kde/share/config/okularrc | ||
14 | noblacklist ${HOME}/.kde4/share/apps/kget | ||
15 | noblacklist ${HOME}/.kde4/share/apps/okular | ||
16 | noblacklist ${HOME}/.kde4/share/config/kgetrc | ||
17 | noblacklist ${HOME}/.kde4/share/config/okularpartrc | ||
18 | noblacklist ${HOME}/.kde4/share/config/okularrc | ||
19 | noblacklist ${HOME}/.local/share/kget | ||
20 | noblacklist ${HOME}/.local/share/okular | ||
21 | noblacklist ${HOME}/.local/share/qpdfview | ||
22 | |||
23 | whitelist ${HOME}/.cache/gnome-mplayer/plugin | ||
24 | whitelist ${HOME}/.config/gnome-mplayer | ||
25 | whitelist ${HOME}/.config/kgetrc | ||
26 | whitelist ${HOME}/.config/okularpartrc | ||
27 | whitelist ${HOME}/.config/okularrc | ||
28 | whitelist ${HOME}/.config/pipelight-silverlight5.1 | ||
29 | whitelist ${HOME}/.config/pipelight-widevine | ||
30 | whitelist ${HOME}/.config/qpdfview | ||
31 | whitelist ${HOME}/.kde/share/apps/kget | ||
32 | whitelist ${HOME}/.kde/share/apps/okular | ||
33 | whitelist ${HOME}/.kde/share/config/kgetrc | ||
34 | whitelist ${HOME}/.kde/share/config/okularpartrc | ||
35 | whitelist ${HOME}/.kde/share/config/okularrc | ||
36 | whitelist ${HOME}/.kde4/share/apps/kget | ||
37 | whitelist ${HOME}/.kde4/share/apps/okular | ||
38 | whitelist ${HOME}/.kde4/share/config/kgetrc | ||
39 | whitelist ${HOME}/.kde4/share/config/okularpartrc | ||
40 | whitelist ${HOME}/.kde4/share/config/okularrc | ||
41 | whitelist ${HOME}/.keysnail.js | ||
42 | whitelist ${HOME}/.lastpass | ||
43 | whitelist ${HOME}/.local/share/kget | ||
44 | whitelist ${HOME}/.local/share/okular | ||
45 | whitelist ${HOME}/.local/share/qpdfview | ||
46 | whitelist ${HOME}/.local/share/tridactyl | ||
47 | whitelist ${HOME}/.pentadactyl | ||
48 | whitelist ${HOME}/.pentadactylrc | ||
49 | whitelist ${HOME}/.tridactylrc | ||
50 | whitelist ${HOME}/.vimperator | ||
51 | whitelist ${HOME}/.vimperatorrc | ||
52 | whitelist ${HOME}/.wine-pipelight | ||
53 | whitelist ${HOME}/.wine-pipelight64 | ||
54 | whitelist ${HOME}/.zotero | ||
55 | whitelist ${HOME}/dwhelper | ||
56 | |||
57 | # GNOME Shell integration (chrome-gnome-shell) needs dbus and python 3 (blacklisted by disable-interpreters.inc) | ||
58 | noblacklist ${HOME}/.local/share/gnome-shell | ||
59 | whitelist ${HOME}/.local/share/gnome-shell | ||
60 | ignore dbus-user none | ||
61 | ignore dbus-system none | ||
62 | include allow-python3.inc | ||
63 | |||
64 | # KeePassXC Browser Integration | ||
65 | #private-bin keepassxc-proxy | ||
66 | |||
67 | # Flash plugin | ||
68 | # private-etc must first be enabled in firefox-common.profile and in profiles including it. | ||
69 | #private-etc adobe | ||
diff --git a/etc/inc/softmaker-common.inc b/etc/inc/softmaker-common.inc new file mode 100644 index 000000000..a8ec5848c --- /dev/null +++ b/etc/inc/softmaker-common.inc | |||
@@ -0,0 +1,50 @@ | |||
1 | # Firejail profile for softmaker-common | ||
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include softmaker-common.local | ||
5 | # Persistent global definitions | ||
6 | # added by caller profile | ||
7 | #include globals.local | ||
8 | |||
9 | # The offical packages install the desktop file under /usr/local/share/applications | ||
10 | # with an absolute Exec line. These files are NOT handelt by firecfg, | ||
11 | # therefore you must manualy copy them in you home and remove '/usr/bin/'. | ||
12 | |||
13 | noblacklist ${HOME}/SoftMaker | ||
14 | |||
15 | include disable-common.inc | ||
16 | include disable-devel.inc | ||
17 | include disable-exec.inc | ||
18 | include disable-interpreters.inc | ||
19 | include disable-passwdmgr.inc | ||
20 | include disable-programs.inc | ||
21 | |||
22 | whitelist /usr/share/office2018 | ||
23 | whitelist /usr/share/freeoffice2018 | ||
24 | include whitelist-usr-share-common.inc | ||
25 | include whitelist-var-common.inc | ||
26 | |||
27 | apparmor | ||
28 | caps.drop all | ||
29 | ipc-namespace | ||
30 | netfilter | ||
31 | nodvd | ||
32 | nogroups | ||
33 | nonewprivs | ||
34 | noroot | ||
35 | notv | ||
36 | nou2f | ||
37 | novideo | ||
38 | protocol unix,inet,inet6 | ||
39 | seccomp | ||
40 | shell none | ||
41 | tracelog | ||
42 | |||
43 | private-bin freeoffice-planmaker,freeoffice-presentations,freeoffice-textmaker,planmaker18,planmaker18free,presentations18,presentations18free,sh,textmaker18,textmaker18free | ||
44 | private-cache | ||
45 | private-dev | ||
46 | private-etc ca-certificates,crypto-policies,fonts,ld.so.cache,ld.so.conf,ld.so.conf.d,ld.so.preload,machine-id,nsswitch.conf,pki,SoftMaker,ssl | ||
47 | private-tmp | ||
48 | |||
49 | dbus-user none | ||
50 | dbus-system none | ||
diff --git a/etc/inc/whitelist-common.inc b/etc/inc/whitelist-common.inc new file mode 100644 index 000000000..9c1b7b92c --- /dev/null +++ b/etc/inc/whitelist-common.inc | |||
@@ -0,0 +1,76 @@ | |||
1 | # Local customizations come here | ||
2 | include whitelist-common.local | ||
3 | |||
4 | # common whitelist for all profiles | ||
5 | |||
6 | whitelist ${HOME}/.XCompose | ||
7 | whitelist ${HOME}/.asoundrc | ||
8 | whitelist ${HOME}/.config/ibus | ||
9 | whitelist ${HOME}/.config/mimeapps.list | ||
10 | whitelist ${HOME}/.config/pkcs11 | ||
11 | read-only ${HOME}/.config/pkcs11 | ||
12 | whitelist ${HOME}/.config/user-dirs.dirs | ||
13 | read-only ${HOME}/.config/user-dirs.dirs | ||
14 | whitelist ${HOME}/.drirc | ||
15 | whitelist ${HOME}/.icons | ||
16 | ?HAS_APPIMAGE: whitelist ${HOME}/.local/share/appimagekit | ||
17 | whitelist ${HOME}/.local/share/applications | ||
18 | read-only ${HOME}/.local/share/applications | ||
19 | whitelist ${HOME}/.local/share/icons | ||
20 | whitelist ${HOME}/.local/share/mime | ||
21 | whitelist ${HOME}/.mime.types | ||
22 | |||
23 | # dconf | ||
24 | mkdir ${HOME}/.config/dconf | ||
25 | whitelist ${HOME}/.config/dconf | ||
26 | |||
27 | # fonts | ||
28 | whitelist ${HOME}/.cache/fontconfig | ||
29 | whitelist ${HOME}/.config/fontconfig | ||
30 | whitelist ${HOME}/.fontconfig | ||
31 | whitelist ${HOME}/.fonts | ||
32 | whitelist ${HOME}/.fonts.conf | ||
33 | whitelist ${HOME}/.fonts.conf.d | ||
34 | whitelist ${HOME}/.fonts.d | ||
35 | whitelist ${HOME}/.local/share/fonts | ||
36 | whitelist ${HOME}/.pangorc | ||
37 | |||
38 | # gtk | ||
39 | whitelist ${HOME}/.config/gtk-2.0 | ||
40 | whitelist ${HOME}/.config/gtk-3.0 | ||
41 | whitelist ${HOME}/.config/gtkrc | ||
42 | whitelist ${HOME}/.config/gtkrc-2.0 | ||
43 | whitelist ${HOME}/.gnome2 | ||
44 | whitelist ${HOME}/.gnome2-private | ||
45 | whitelist ${HOME}/.gtk-2.0 | ||
46 | whitelist ${HOME}/.gtkrc | ||
47 | whitelist ${HOME}/.gtkrc-2.0 | ||
48 | whitelist ${HOME}/.kde/share/config/gtkrc | ||
49 | whitelist ${HOME}/.kde/share/config/gtkrc-2.0 | ||
50 | whitelist ${HOME}/.kde4/share/config/gtkrc | ||
51 | whitelist ${HOME}/.kde4/share/config/gtkrc-2.0 | ||
52 | whitelist ${HOME}/.local/share/themes | ||
53 | whitelist ${HOME}/.themes | ||
54 | |||
55 | # qt/kde | ||
56 | whitelist ${HOME}/.cache/kioexec/krun | ||
57 | whitelist ${HOME}/.config/Kvantum | ||
58 | whitelist ${HOME}/.config/Trolltech.conf | ||
59 | whitelist ${HOME}/.config/kdeglobals | ||
60 | whitelist ${HOME}/.config/kio_httprc | ||
61 | whitelist ${HOME}/.config/kioslaverc | ||
62 | whitelist ${HOME}/.config/ksslcablacklist | ||
63 | whitelist ${HOME}/.config/qt5ct | ||
64 | whitelist ${HOME}/.kde/share/config/kdeglobals | ||
65 | whitelist ${HOME}/.kde/share/config/kio_httprc | ||
66 | whitelist ${HOME}/.kde/share/config/kioslaverc | ||
67 | whitelist ${HOME}/.kde/share/config/ksslcablacklist | ||
68 | whitelist ${HOME}/.kde/share/config/oxygenrc | ||
69 | whitelist ${HOME}/.kde/share/icons | ||
70 | whitelist ${HOME}/.kde4/share/config/kdeglobals | ||
71 | whitelist ${HOME}/.kde4/share/config/kio_httprc | ||
72 | whitelist ${HOME}/.kde4/share/config/kioslaverc | ||
73 | whitelist ${HOME}/.kde4/share/config/ksslcablacklist | ||
74 | whitelist ${HOME}/.kde4/share/config/oxygenrc | ||
75 | whitelist ${HOME}/.kde4/share/icons | ||
76 | whitelist ${HOME}/.local/share/qt5ct | ||
diff --git a/etc/inc/whitelist-runuser-common.inc b/etc/inc/whitelist-runuser-common.inc new file mode 100644 index 000000000..9ffd3d5be --- /dev/null +++ b/etc/inc/whitelist-runuser-common.inc | |||
@@ -0,0 +1,11 @@ | |||
1 | # Local customizations come here | ||
2 | include whitelist-runuser-common.local | ||
3 | |||
4 | # common ${RUNUSER} (=/run/user/$UID) whitelist for all profiles | ||
5 | |||
6 | whitelist ${RUNUSER}/bus | ||
7 | whitelist ${RUNUSER}/dconf | ||
8 | whitelist ${RUNUSER}/gdm/Xauthority | ||
9 | whitelist ${RUNUSER}/.mutter-Xwaylandauth.* | ||
10 | whitelist ${RUNUSER}/pulse/native | ||
11 | whitelist ${RUNUSER}/wayland-0 | ||
diff --git a/etc/inc/whitelist-usr-share-common.inc b/etc/inc/whitelist-usr-share-common.inc new file mode 100644 index 000000000..193b00a2a --- /dev/null +++ b/etc/inc/whitelist-usr-share-common.inc | |||
@@ -0,0 +1,61 @@ | |||
1 | # Local customizations come here | ||
2 | include whitelist-usr-share-common.local | ||
3 | |||
4 | # common /usr/share whitelist for all profiles | ||
5 | |||
6 | whitelist /usr/share/alsa | ||
7 | whitelist /usr/share/applications | ||
8 | whitelist /usr/share/ca-certificates | ||
9 | whitelist /usr/share/crypto-policies | ||
10 | whitelist /usr/share/cursors | ||
11 | whitelist /usr/share/dconf | ||
12 | whitelist /usr/share/distro-info | ||
13 | whitelist /usr/share/drirc.d | ||
14 | whitelist /usr/share/enchant | ||
15 | whitelist /usr/share/enchant-2 | ||
16 | whitelist /usr/share/file | ||
17 | whitelist /usr/share/fontconfig | ||
18 | whitelist /usr/share/fonts | ||
19 | whitelist /usr/share/gir-1.0 | ||
20 | whitelist /usr/share/gjs-1.0 | ||
21 | whitelist /usr/share/glib-2.0 | ||
22 | whitelist /usr/share/glvnd | ||
23 | whitelist /usr/share/gtk-2.0 | ||
24 | whitelist /usr/share/gtk-3.0 | ||
25 | whitelist /usr/share/gtk-engines | ||
26 | whitelist /usr/share/gtksourceview-3.0 | ||
27 | whitelist /usr/share/gtksourceview-4 | ||
28 | whitelist /usr/share/hunspell | ||
29 | whitelist /usr/share/hwdata | ||
30 | whitelist /usr/share/icons | ||
31 | whitelist /usr/share/icu | ||
32 | whitelist /usr/share/knotifications5 | ||
33 | whitelist /usr/share/kservices5 | ||
34 | whitelist /usr/share/Kvantum | ||
35 | whitelist /usr/share/kxmlgui5 | ||
36 | whitelist /usr/share/libdrm | ||
37 | whitelist /usr/share/libthai | ||
38 | whitelist /usr/share/locale | ||
39 | whitelist /usr/share/mime | ||
40 | whitelist /usr/share/misc | ||
41 | whitelist /usr/share/Modules | ||
42 | whitelist /usr/share/myspell | ||
43 | whitelist /usr/share/p11-kit | ||
44 | whitelist /usr/share/pixmaps | ||
45 | whitelist /usr/share/pki | ||
46 | whitelist /usr/share/plasma | ||
47 | whitelist /usr/share/publicsuffix | ||
48 | whitelist /usr/share/qt | ||
49 | whitelist /usr/share/qt4 | ||
50 | whitelist /usr/share/qt5 | ||
51 | whitelist /usr/share/sounds | ||
52 | whitelist /usr/share/tcl8.6 | ||
53 | whitelist /usr/share/tcltk | ||
54 | whitelist /usr/share/terminfo | ||
55 | whitelist /usr/share/texlive | ||
56 | whitelist /usr/share/texmf | ||
57 | whitelist /usr/share/themes | ||
58 | whitelist /usr/share/thumbnail.so | ||
59 | whitelist /usr/share/X11 | ||
60 | whitelist /usr/share/xml | ||
61 | whitelist /usr/share/zoneinfo | ||
diff --git a/etc/inc/whitelist-var-common.inc b/etc/inc/whitelist-var-common.inc new file mode 100644 index 000000000..e2210057b --- /dev/null +++ b/etc/inc/whitelist-var-common.inc | |||
@@ -0,0 +1,11 @@ | |||
1 | # Local customizations come here | ||
2 | include whitelist-var-common.local | ||
3 | |||
4 | # common /var whitelist for all profiles | ||
5 | |||
6 | whitelist /var/lib/dbus | ||
7 | whitelist /var/lib/menu-xdg | ||
8 | whitelist /var/cache/fontconfig | ||
9 | whitelist /var/tmp | ||
10 | whitelist /var/run | ||
11 | whitelist /var/lock | ||