diff options
author | David Thole <david@thedarktrumpet.com> | 2019-06-03 19:52:57 -0500 |
---|---|---|
committer | David Thole <david@thedarktrumpet.com> | 2019-06-03 19:52:57 -0500 |
commit | 46c8b9377bc698e0662644aa6dcef0e7f9bf45e6 (patch) | |
tree | 3de0e33f84be3243500181c44af5ce63e32acfbc /etc/teams-for-linux.profile | |
parent | Adding teams-for-linux to the config (diff) | |
download | firejail-46c8b9377bc698e0662644aa6dcef0e7f9bf45e6.tar.gz firejail-46c8b9377bc698e0662644aa6dcef0e7f9bf45e6.tar.zst firejail-46c8b9377bc698e0662644aa6dcef0e7f9bf45e6.zip |
Applying recent changes requested
Diffstat (limited to 'etc/teams-for-linux.profile')
-rw-r--r-- | etc/teams-for-linux.profile | 23 |
1 files changed, 11 insertions, 12 deletions
diff --git a/etc/teams-for-linux.profile b/etc/teams-for-linux.profile index 3df0e6027..51a76bad4 100644 --- a/etc/teams-for-linux.profile +++ b/etc/teams-for-linux.profile | |||
@@ -6,21 +6,22 @@ include teams-for-linux.local | |||
6 | # Persistent global definitions | 6 | # Persistent global definitions |
7 | include globals.local | 7 | include globals.local |
8 | 8 | ||
9 | caps.drop all | ||
10 | |||
11 | mkdir ${HOME}/.config/teams-for-linux | ||
12 | whitelist ${HOME}/.config/teams-for-linux | ||
13 | noblacklist ${HOME}/.config/teams-for-linux | 9 | noblacklist ${HOME}/.config/teams-for-linux |
14 | 10 | ||
15 | include whitelist-common.inc | ||
16 | include whitelist-var-common.inc | ||
17 | include disable-common.inc | 11 | include disable-common.inc |
18 | include disable-devel.inc | 12 | include disable-devel.inc |
19 | include disable-passwdmgr.inc | ||
20 | include disable-interpreters.inc | ||
21 | include disable-exec.inc | 13 | include disable-exec.inc |
14 | include disable-interpreters.inc | ||
15 | include disable-passwdmgr.inc | ||
22 | include disable-programs.inc | 16 | include disable-programs.inc |
23 | 17 | ||
18 | mkdir ${HOME}/.config/teams-for-linux | ||
19 | whitelist ${HOME}/.config/teams-for-linux | ||
20 | whitelist ${DOWNLOADS} | ||
21 | include whitelist-common.inc | ||
22 | include whitelist-var-common.inc | ||
23 | |||
24 | caps.drop all | ||
24 | netfilter | 25 | netfilter |
25 | nodvd | 26 | nodvd |
26 | nogroups | 27 | nogroups |
@@ -33,11 +34,9 @@ protocol unix,inet,inet6,netlink | |||
33 | seccomp | 34 | seccomp |
34 | shell none | 35 | shell none |
35 | 36 | ||
37 | disable-mnt | ||
36 | private-bin sh,xdg-mime,tr,sed,echo,head,cut,xdg-open,grep,egrep,bash,zsh,teams-for-linux | 38 | private-bin sh,xdg-mime,tr,sed,echo,head,cut,xdg-open,grep,egrep,bash,zsh,teams-for-linux |
39 | private-cache | ||
37 | private-dev | 40 | private-dev |
38 | private-etc fonts,machine-id,localtime,ld.so.cache,ca-certificates,ssl,pki,crypto-policies,resolv.conf | 41 | private-etc fonts,machine-id,localtime,ld.so.cache,ca-certificates,ssl,pki,crypto-policies,resolv.conf |
39 | private-tmp | 42 | private-tmp |
40 | private-cache | ||
41 | disable-mnt | ||
42 | |||
43 | |||