diff options
author | Tad <tad@spotco.us> | 2017-09-20 13:25:31 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2017-09-20 13:25:31 -0400 |
commit | ec55db76707e9749378c4dfa32f82ed72813e455 (patch) | |
tree | b1820fa04459a35b95cadeea6c116859f79394ea /etc/smtube.profile | |
parent | remove some redundancies (diff) | |
download | firejail-ec55db76707e9749378c4dfa32f82ed72813e455.tar.gz firejail-ec55db76707e9749378c4dfa32f82ed72813e455.tar.zst firejail-ec55db76707e9749378c4dfa32f82ed72813e455.zip |
Restore smtube.profile, accidentally clobbered in cbbc90381b41156c16bcb30934a10c843c8298c0
Diffstat (limited to 'etc/smtube.profile')
-rw-r--r-- | etc/smtube.profile | 37 |
1 files changed, 37 insertions, 0 deletions
diff --git a/etc/smtube.profile b/etc/smtube.profile new file mode 100644 index 000000000..2694dd5b0 --- /dev/null +++ b/etc/smtube.profile | |||
@@ -0,0 +1,37 @@ | |||
1 | # Firejail profile for smtube | ||
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include /etc/firejail/smtube.local | ||
5 | # Persistent global definitions | ||
6 | include /etc/firejail/globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.config/smplayer | ||
9 | noblacklist ${HOME}/.config/smtube | ||
10 | noblacklist ${HOME}/.config/mpv | ||
11 | noblacklist ${HOME}/.mplayer | ||
12 | noblacklist ${HOME}/.config/vlc | ||
13 | noblacklist ${HOME}/.local/share/vlc | ||
14 | |||
15 | include /etc/firejail/disable-common.inc | ||
16 | include /etc/firejail/disable-devel.inc | ||
17 | include /etc/firejail/disable-passwdmgr.inc | ||
18 | include /etc/firejail/disable-programs.inc | ||
19 | |||
20 | caps.drop all | ||
21 | netfilter | ||
22 | nodvd | ||
23 | notv | ||
24 | novideo | ||
25 | nogroups | ||
26 | nonewprivs | ||
27 | noroot | ||
28 | protocol unix,inet,inet6,netlink | ||
29 | seccomp | ||
30 | shell none | ||
31 | |||
32 | #no private-bin because users can add their own players to smtube and that would prevent that | ||
33 | private-dev | ||
34 | private-tmp | ||
35 | |||
36 | noexec ${HOME} | ||
37 | noexec /tmp | ||