diff options
author | Kelvin M. Klann <kmk3.code@protonmail.com> | 2024-04-29 16:45:57 -0300 |
---|---|---|
committer | Kelvin M. Klann <kmk3.code@protonmail.com> | 2024-04-29 17:06:23 -0300 |
commit | 6ff97d00094052c9c9c2ca57b5e96645b3f93230 (patch) | |
tree | ceac8428df86f12319952368fe1ee933135a4b2b /etc/profile-a-l | |
parent | several kids programs (diff) | |
download | firejail-6ff97d00094052c9c9c2ca57b5e96645b3f93230.tar.gz firejail-6ff97d00094052c9c9c2ca57b5e96645b3f93230.tar.zst firejail-6ff97d00094052c9c9c2ca57b5e96645b3f93230.zip |
profiles: fix new game profiles
Fix sorting and improve comments.
See etc/templates/profile.template.
This amends commit 4c5f55899 ("several kids programs", 2024-04-29).
Diffstat (limited to 'etc/profile-a-l')
-rw-r--r-- | etc/profile-a-l/alienblaster.profile | 12 | ||||
-rw-r--r-- | etc/profile-a-l/geki2.profile | 6 | ||||
-rw-r--r-- | etc/profile-a-l/geki3.profile | 6 | ||||
-rw-r--r-- | etc/profile-a-l/lbreakouthd.profile | 13 |
4 files changed, 18 insertions, 19 deletions
diff --git a/etc/profile-a-l/alienblaster.profile b/etc/profile-a-l/alienblaster.profile index 0e0478a49..2de296f53 100644 --- a/etc/profile-a-l/alienblaster.profile +++ b/etc/profile-a-l/alienblaster.profile | |||
@@ -14,16 +14,16 @@ include disable-interpreters.inc | |||
14 | include disable-programs.inc | 14 | include disable-programs.inc |
15 | include disable-xdg.inc | 15 | include disable-xdg.inc |
16 | 16 | ||
17 | mkfile ${HOME}/.alienblaster_highscore | ||
18 | whitelist ${HOME}/.alienblaster_highscore | ||
19 | mkdir ${HOME}/.alienblaster | 17 | mkdir ${HOME}/.alienblaster |
18 | mkfile ${HOME}/.alienblaster_highscore | ||
20 | whitelist ${HOME}/.alienblaster | 19 | whitelist ${HOME}/.alienblaster |
21 | include whitelist-common.inc | 20 | whitelist ${HOME}/.alienblaster_highscore |
22 | include whitelist-run-common.inc | ||
23 | whitelist ${RUNUSER}/pulse | 21 | whitelist ${RUNUSER}/pulse |
24 | include whitelist-runuser-common.inc | ||
25 | whitelist /usr/share/games/alienblaster | 22 | whitelist /usr/share/games/alienblaster |
26 | whitelist /usr/share/timidity | 23 | whitelist /usr/share/timidity |
24 | include whitelist-common.inc | ||
25 | include whitelist-run-common.inc | ||
26 | include whitelist-runuser-common.inc | ||
27 | include whitelist-usr-share-common.inc | 27 | include whitelist-usr-share-common.inc |
28 | include whitelist-var-common.inc | 28 | include whitelist-var-common.inc |
29 | 29 | ||
@@ -45,7 +45,7 @@ tracelog | |||
45 | 45 | ||
46 | disable-mnt | 46 | disable-mnt |
47 | private-dev | 47 | private-dev |
48 | private-etc @x11,@sound,@games | 48 | private-etc @games,@sound,@x11 |
49 | private-tmp | 49 | private-tmp |
50 | 50 | ||
51 | dbus-user none | 51 | dbus-user none |
diff --git a/etc/profile-a-l/geki2.profile b/etc/profile-a-l/geki2.profile index 32ff9c8af..5ebd9b427 100644 --- a/etc/profile-a-l/geki2.profile +++ b/etc/profile-a-l/geki2.profile | |||
@@ -12,11 +12,10 @@ include disable-programs.inc | |||
12 | include disable-shell.inc | 12 | include disable-shell.inc |
13 | include disable-xdg.inc | 13 | include disable-xdg.inc |
14 | 14 | ||
15 | whitelist /usr/share/games/geki2 | ||
15 | include whitelist-run-common.inc | 16 | include whitelist-run-common.inc |
16 | include whitelist-runuser-common.inc | 17 | include whitelist-runuser-common.inc |
17 | whitelist /usr/share/games/geki2 | ||
18 | include whitelist-usr-share-common.inc | 18 | include whitelist-usr-share-common.inc |
19 | writable-var # game scores stored under /var/games | ||
20 | include whitelist-var-common.inc | 19 | include whitelist-var-common.inc |
21 | 20 | ||
22 | apparmor | 21 | apparmor |
@@ -39,8 +38,9 @@ disable-mnt | |||
39 | private | 38 | private |
40 | private-bin geki2 | 39 | private-bin geki2 |
41 | private-dev | 40 | private-dev |
42 | private-etc @x11,@sound,@games | 41 | private-etc @games,@sound,@x11 |
43 | private-tmp | 42 | private-tmp |
43 | writable-var # game scores are stored under /var/games | ||
44 | 44 | ||
45 | dbus-user none | 45 | dbus-user none |
46 | dbus-system none | 46 | dbus-system none |
diff --git a/etc/profile-a-l/geki3.profile b/etc/profile-a-l/geki3.profile index de2167724..508c96002 100644 --- a/etc/profile-a-l/geki3.profile +++ b/etc/profile-a-l/geki3.profile | |||
@@ -12,11 +12,10 @@ include disable-programs.inc | |||
12 | include disable-shell.inc | 12 | include disable-shell.inc |
13 | include disable-xdg.inc | 13 | include disable-xdg.inc |
14 | 14 | ||
15 | whitelist /usr/share/games/geki3 | ||
15 | include whitelist-run-common.inc | 16 | include whitelist-run-common.inc |
16 | include whitelist-runuser-common.inc | 17 | include whitelist-runuser-common.inc |
17 | whitelist /usr/share/games/geki3 | ||
18 | include whitelist-usr-share-common.inc | 18 | include whitelist-usr-share-common.inc |
19 | writable-var # game scores stored under /var/games | ||
20 | include whitelist-var-common.inc | 19 | include whitelist-var-common.inc |
21 | 20 | ||
22 | apparmor | 21 | apparmor |
@@ -39,8 +38,9 @@ disable-mnt | |||
39 | private | 38 | private |
40 | private-bin geki3 | 39 | private-bin geki3 |
41 | private-dev | 40 | private-dev |
42 | private-etc @x11,@sound,@games | 41 | private-etc @games,@sound,@x11 |
43 | private-tmp | 42 | private-tmp |
43 | writable-var # game scores are stored under /var/games | ||
44 | 44 | ||
45 | dbus-user none | 45 | dbus-user none |
46 | dbus-system none | 46 | dbus-system none |
diff --git a/etc/profile-a-l/lbreakouthd.profile b/etc/profile-a-l/lbreakouthd.profile index 095a3839c..e454772fc 100644 --- a/etc/profile-a-l/lbreakouthd.profile +++ b/etc/profile-a-l/lbreakouthd.profile | |||
@@ -18,16 +18,14 @@ include disable-xdg.inc | |||
18 | 18 | ||
19 | mkdir ${HOME}/.lbreakouthd | 19 | mkdir ${HOME}/.lbreakouthd |
20 | whitelist ${HOME}/.lbreakouthd | 20 | whitelist ${HOME}/.lbreakouthd |
21 | include whitelist-common.inc | 21 | whitelist ${RUNUSER}/pulse |
22 | |||
23 | whitelist /run/udev/control | ||
24 | whitelist /run/host/container-manager | 22 | whitelist /run/host/container-manager |
23 | whitelist /run/udev/control | ||
24 | whitelist /usr/share/games/lbreakouthd | ||
25 | include whitelist-common.inc | ||
25 | include whitelist-run-common.inc | 26 | include whitelist-run-common.inc |
26 | whitelist ${RUNUSER}/pulse | ||
27 | include whitelist-runuser-common.inc | 27 | include whitelist-runuser-common.inc |
28 | whitelist /usr/share/games/lbreakouthd | ||
29 | include whitelist-usr-share-common.inc | 28 | include whitelist-usr-share-common.inc |
30 | writable-var # game scores stored under /var/games | ||
31 | include whitelist-var-common.inc | 29 | include whitelist-var-common.inc |
32 | 30 | ||
33 | apparmor | 31 | apparmor |
@@ -49,8 +47,9 @@ tracelog | |||
49 | disable-mnt | 47 | disable-mnt |
50 | private-bin lbreakouthd | 48 | private-bin lbreakouthd |
51 | private-dev | 49 | private-dev |
52 | private-etc @x11,@sound,@games | 50 | private-etc @games,@sound,@x11 |
53 | private-tmp | 51 | private-tmp |
52 | writable-var # game scores are stored under /var/games | ||
54 | 53 | ||
55 | dbus-user none | 54 | dbus-user none |
56 | dbus-system none | 55 | dbus-system none |