diff options
author | netblue30 <netblue30@yahoo.com> | 2016-03-05 19:52:13 -0500 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-03-05 19:52:13 -0500 |
commit | c3b33900177a67d052bd4451d54f78994e25131a (patch) | |
tree | 783fd22b378beb4cf5b4048d7d0f58e715b51b37 /etc/seamonkey.profile | |
parent | Merge pull request #349 from Fred-Barclay/master (diff) | |
download | firejail-c3b33900177a67d052bd4451d54f78994e25131a.tar.gz firejail-c3b33900177a67d052bd4451d54f78994e25131a.tar.zst firejail-c3b33900177a67d052bd4451d54f78994e25131a.zip |
profiles cleanup
Diffstat (limited to 'etc/seamonkey.profile')
-rw-r--r-- | etc/seamonkey.profile | 26 |
1 files changed, 25 insertions, 1 deletions
diff --git a/etc/seamonkey.profile b/etc/seamonkey.profile index d585c719b..b896af97a 100644 --- a/etc/seamonkey.profile +++ b/etc/seamonkey.profile | |||
@@ -1,18 +1,27 @@ | |||
1 | # Firejail profile for Seamoneky based off Mozilla Firefox | 1 | # Firejail profile for Seamoneky based off Mozilla Firefox |
2 | noblacklist ${HOME}/.mozilla | 2 | noblacklist ~/.mozilla |
3 | noblacklist ~/.cache/mozilla | ||
4 | noblacklist ~/keepassx.kdbx | ||
3 | include /etc/firejail/disable-mgmt.inc | 5 | include /etc/firejail/disable-mgmt.inc |
4 | include /etc/firejail/disable-secret.inc | 6 | include /etc/firejail/disable-secret.inc |
5 | include /etc/firejail/disable-common.inc | 7 | include /etc/firejail/disable-common.inc |
6 | include /etc/firejail/disable-devel.inc | 8 | include /etc/firejail/disable-devel.inc |
7 | include /etc/firejail/disable-terminals.inc | 9 | include /etc/firejail/disable-terminals.inc |
10 | |||
8 | caps.drop all | 11 | caps.drop all |
9 | seccomp | 12 | seccomp |
10 | protocol unix,inet,inet6,netlink | 13 | protocol unix,inet,inet6,netlink |
11 | netfilter | 14 | netfilter |
12 | tracelog | 15 | tracelog |
13 | noroot | 16 | noroot |
17 | |||
14 | whitelist ${DOWNLOADS} | 18 | whitelist ${DOWNLOADS} |
19 | mkdir ~/.mozilla | ||
20 | mkdir ~/.mozilla/seamonkey | ||
15 | whitelist ~/.mozilla/seamonkey | 21 | whitelist ~/.mozilla/seamonkey |
22 | mkdir ~/.cache | ||
23 | mkdir ~/.cache/mozilla | ||
24 | mkdir ~/.cache/mozilla/seamonkey | ||
16 | whitelist ~/.cache/mozilla/seamonkey | 25 | whitelist ~/.cache/mozilla/seamonkey |
17 | whitelist ~/dwhelper | 26 | whitelist ~/dwhelper |
18 | whitelist ~/.zotero | 27 | whitelist ~/.zotero |
@@ -27,6 +36,21 @@ whitelist ~/.cache/gnome-mplayer/plugin | |||
27 | whitelist ~/.pki | 36 | whitelist ~/.pki |
28 | include /etc/firejail/whitelist-common.inc | 37 | include /etc/firejail/whitelist-common.inc |
29 | 38 | ||
39 | # lastpass, keepassx | ||
40 | whitelist ~/.keepassx | ||
41 | whitelist ~/.config/keepassx | ||
42 | whitelist ~/keepassx.kdbx | ||
43 | whitelist ~/.lastpass | ||
44 | whitelist ~/.config/lastpass | ||
45 | |||
46 | #silverlight | ||
47 | whitelist ~/.wine-pipelight | ||
48 | whitelist ~/.wine-pipelight64 | ||
49 | whitelist ~/.config/pipelight-widevine | ||
50 | whitelist ~/.config/pipelight-silverlight5.1 | ||
51 | |||
52 | |||
53 | |||
30 | # experimental features | 54 | # experimental features |
31 | #private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse | 55 | #private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse |
32 | 56 | ||