Seahorse revisited (#2600)

* Refactor seahorse into a whitelist profile * Refactor seahorse-tool as a whitelist profile * Create seahorse-daemon.profile * Add seahorse-daemon to firecfg * Drop blacklist /tmp/.X11-unix from seahorse.profile Thanks to @rusty-snake for pointing out blacklisting /tmp/.X11-unix is ridiculous for GUI's. * Add non-GUI option to seahorse-daemon
author: glitsj16 <glitsj16@users.noreply.github.com> 2019-03-16 17:49:01 +0000
committer: GitHub <noreply@github.com> 2019-03-16 17:49:01 +0000
commit: 0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c (patch)
tree: f95e3eb3c3e9680ecab513c8d6be3736d372c3c5 /etc/seahorse-tool.profile
parent: Fix assogiate's private-bin (#2603) (diff)
download: firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.tar.gz
firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.tar.zst
firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.zip
1 files changed, 2 insertions, 11 deletions
diff --git a/etc/seahorse-tool.profile b/etc/seahorse-tool.profile
index 2e792c8e0..96f365a4b 100644
--- a/etc/seahorse-tool.profile
+++ b/etc/seahorse-tool.profile
@@ -7,20 +7,11 @@ include seahorse-tool.local
 # added by included profile
 #include globals.local
-# dconf
+noblacklist ${DOWNLOADS}
-noblacklist ${HOME}/.config/dconf
-include disable-exec.inc
-include disable-xdg.inc
-include whitelist-var-common.inc
-apparmor
-ipc-namespace
-disable-mnt
 private-tmp
 memory-deny-write-execute
 # Redirect
-include gpg.profile
+include seahorse.profile
author	glitsj16 <glitsj16@users.noreply.github.com>	2019-03-16 17:49:01 +0000
committer	GitHub <noreply@github.com>	2019-03-16 17:49:01 +0000
commit	0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c (patch)
tree	f95e3eb3c3e9680ecab513c8d6be3736d372c3c5 /etc/seahorse-tool.profile
parent	Fix assogiate's private-bin (#2603) (diff)
download	firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.tar.gz firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.tar.zst firejail-0ea4ed8408f6fc506f9e4bef0f9e94fe14ea8d9c.zip