diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2019-03-16 17:49:01 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-03-16 17:49:01 +0000 |
commit | 0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c (patch) | |
tree | f95e3eb3c3e9680ecab513c8d6be3736d372c3c5 /etc/seahorse-tool.profile | |
parent | Fix assogiate's private-bin (#2603) (diff) | |
download | firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.tar.gz firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.tar.zst firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.zip |
Seahorse revisited (#2600)
* Refactor seahorse into a whitelist profile
* Refactor seahorse-tool as a whitelist profile
* Create seahorse-daemon.profile
* Add seahorse-daemon to firecfg
* Drop blacklist /tmp/.X11-unix from seahorse.profile
Thanks to @rusty-snake for pointing out blacklisting /tmp/.X11-unix is ridiculous for GUI's.
* Add non-GUI option to seahorse-daemon
Diffstat (limited to 'etc/seahorse-tool.profile')
-rw-r--r-- | etc/seahorse-tool.profile | 13 |
1 files changed, 2 insertions, 11 deletions
diff --git a/etc/seahorse-tool.profile b/etc/seahorse-tool.profile index 2e792c8e0..96f365a4b 100644 --- a/etc/seahorse-tool.profile +++ b/etc/seahorse-tool.profile | |||
@@ -7,20 +7,11 @@ include seahorse-tool.local | |||
7 | # added by included profile | 7 | # added by included profile |
8 | #include globals.local | 8 | #include globals.local |
9 | 9 | ||
10 | # dconf | 10 | noblacklist ${DOWNLOADS} |
11 | noblacklist ${HOME}/.config/dconf | ||
12 | 11 | ||
13 | include disable-exec.inc | ||
14 | include disable-xdg.inc | ||
15 | include whitelist-var-common.inc | ||
16 | |||
17 | apparmor | ||
18 | ipc-namespace | ||
19 | |||
20 | disable-mnt | ||
21 | private-tmp | 12 | private-tmp |
22 | 13 | ||
23 | memory-deny-write-execute | 14 | memory-deny-write-execute |
24 | 15 | ||
25 | # Redirect | 16 | # Redirect |
26 | include gpg.profile | 17 | include seahorse.profile |