Unify all profiles

1 files changed, 17 insertions, 24 deletions

diff --git a/etc/supertux2.profile b/etc/supertux2.profile
index 276e91b05..87ad8da7f 100644
--- a/etc/supertux2.profile
+++ b/etc/supertux2.profile
@@ -1,41 +1,34 @@
-# Persistent global definitions go here
+# Firejail profile for supertux2
+# This file is overwritten after every install/update
+# Persistent local customizations
+include /etc/firejail/supertux2.local
+# Persistent global definitions
 include /etc/firejail/globals.local
 
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
-include /etc/firejail/supertux2.local
+noblacklist ~/.local/share/supertux2
 
-################################
-# SuperTux profile
-################################
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
 
-noblacklist ~/.local/share/supertux2
 mkdir ~/.local/share/supertux2
 whitelist ~/.local/share/supertux2
 include /etc/firejail/whitelist-common.inc
 
-include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
-include /etc/firejail/disable-passwdmgr.inc
-
 caps.drop all
+net none
+nogroups
 nonewprivs
 noroot
 protocol unix,netlink
 seccomp
-
-#
-# depending on your usage, you can enable some of the commands below:
-#
-net none
-nogroups
 shell none
-#private-bin supertux2
-# private-etc none
+
+# private-bin supertux2
 private-dev
+# private-etc none
 private-tmp
-# nosound
-
-
-
 
+# CLOBBERED COMMENTS
+# depending on your usage, you can enable some of the commands below:
+# nosound