Create gget.profile

author: glitsj16 <glitsj16@users.noreply.github.com> 2021-02-25 12:55:21 +0000
committer: GitHub <noreply@github.com> 2021-02-25 12:55:21 +0000
commit: 753c362aa8fe7d11a944fa6f2d4a61ee6101ee17 (patch)
tree: 4f3c8769c2569403c1d919689b44a8757d315d26 /etc/profile-a-l
parent: add gget (diff)
download: firejail-753c362aa8fe7d11a944fa6f2d4a61ee6101ee17.tar.gz
firejail-753c362aa8fe7d11a944fa6f2d4a61ee6101ee17.tar.zst
firejail-753c362aa8fe7d11a944fa6f2d4a61ee6101ee17.zip
1 files changed, 59 insertions, 0 deletions
diff --git a/etc/profile-a-l/gget.profile b/etc/profile-a-l/gget.profile
new file mode 100644
index 000000000..c4e87e39d
--- /dev/null
+++ b/etc/profile-a-l/gget.profile
@@ -0,0 +1,59 @@
+# Firejail profile for gget
+# Description:  a cli. to get things. from git repos
+# This file is overwritten after every install/update
+quiet
+# Persistent local customizations
+include gget.local
+# Persistent global definitions
+include globals.local
+blacklist /tmp/.X11-unix
+blacklist ${RUNUSER}
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-shell.inc
+include disable-xdg.inc
+whitelist ${DOWNLOADS}
+include whitelist-common.inc
+include whitelist-runuser-common.inc
+include whitelist-usr-share-common.inc
+include whitelist-var-common.inc
+apparmor
+caps.drop all
+ipc-namespace
+machine-id
+netfilter
+no3d
+nodvd
+nogroups
+nonewprivs
+noroot
+nosound
+notv
+nou2f
+novideo
+protocol inet,inet6
+seccomp
+seccomp.block-secondary
+shell none
+tracelog
+disable-mnt
+private-bin gget
+private-cache
+private-dev
+private-etc alternatives,ca-certificates,crypto-policies,pki,resolv.conf,ssl
+private-lib
+private-tmp
+dbus-user none
+dbus-system none
+memory-deny-write-execute
author	glitsj16 <glitsj16@users.noreply.github.com>	2021-02-25 12:55:21 +0000
committer	GitHub <noreply@github.com>	2021-02-25 12:55:21 +0000
commit	753c362aa8fe7d11a944fa6f2d4a61ee6101ee17 (patch)
tree	4f3c8769c2569403c1d919689b44a8757d315d26 /etc/profile-a-l
parent	add gget (diff)
download	firejail-753c362aa8fe7d11a944fa6f2d4a61ee6101ee17.tar.gz firejail-753c362aa8fe7d11a944fa6f2d4a61ee6101ee17.tar.zst firejail-753c362aa8fe7d11a944fa6f2d4a61ee6101ee17.zip

diff --git a/etc/profile-a-l/gget.profile b/etc/profile-a-l/gget.profile new file mode 100644 index 000000000..c4e87e39d --- /dev/null +++ b/etc/profile-a-l/gget.profile
@@ -0,0 +1,59 @@
	1	# Firejail profile for gget
	2	# Description: a cli. to get things. from git repos
	3	# This file is overwritten after every install/update
	4	quiet
	5	# Persistent local customizations
	6	include gget.local
	7	# Persistent global definitions
	8	include globals.local
	9
	10	blacklist /tmp/.X11-unix
	11	blacklist ${RUNUSER}
	12
	13	include disable-common.inc
	14	include disable-devel.inc
	15	include disable-exec.inc
	16	include disable-interpreters.inc
	17	include disable-passwdmgr.inc
	18	include disable-programs.inc
	19	include disable-shell.inc
	20	include disable-xdg.inc
	21
	22	whitelist ${DOWNLOADS}
	23	include whitelist-common.inc
	24	include whitelist-runuser-common.inc
	25	include whitelist-usr-share-common.inc
	26	include whitelist-var-common.inc
	27
	28	apparmor
	29	caps.drop all
	30	ipc-namespace
	31	machine-id
	32	netfilter
	33	no3d
	34	nodvd
	35	nogroups
	36	nonewprivs
	37	noroot
	38	nosound
	39	notv
	40	nou2f
	41	novideo
	42	protocol inet,inet6
	43	seccomp
	44	seccomp.block-secondary
	45	shell none
	46	tracelog
	47
	48	disable-mnt
	49	private-bin gget
	50	private-cache
	51	private-dev
	52	private-etc alternatives,ca-certificates,crypto-policies,pki,resolv.conf,ssl
	53	private-lib
	54	private-tmp
	55
	56	dbus-user none
	57	dbus-system none
	58
	59	memory-deny-write-execute