diff options
| author |  valoq <valoq@mailbox.org> | 2016-11-19 21:57:42 +0100 |
|---|---|---|
| committer | valoq <valoq@mailbox.org> | 2016-11-19 21:57:42 +0100 |
| commit | fa10ab0e093a4224b16491273b0162b0e0a77a3a (patch) | |
| tree | b04a3501e2a119ede58b2bc58aedbd8d0d9cc772 /etc/tracker.profile | |
| parent | various fixes (diff) | |
| download | firejail-fa10ab0e093a4224b16491273b0162b0e0a77a3a.tar.gz firejail-fa10ab0e093a4224b16491273b0162b0e0a77a3a.tar.zst firejail-fa10ab0e093a4224b16491273b0162b0e0a77a3a.zip | |
many new profiles
Diffstat (limited to 'etc/tracker.profile')
| -rw-r--r-- | etc/tracker.profile | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/etc/tracker.profile b/etc/tracker.profile new file mode 100644 index 000000000..217631216 --- /dev/null +++ b/etc/tracker.profile | |||
| @@ -0,0 +1,24 @@ | |||
| 1 | # tracker profile | ||
| 2 | |||
| 3 | # Tracker is started by systemd on most systems. Therefore it is not firejailed by default | ||
| 4 | |||
| 5 | include /etc/firejail/disable-common.inc | ||
| 6 | include /etc/firejail/disable-programs.inc | ||
| 7 | include /etc/firejail/disable-devel.inc | ||
| 8 | include /etc/firejail/disable-passwdmgr.inc | ||
| 9 | |||
| 10 | caps.drop all | ||
| 11 | nogroups | ||
| 12 | nonewprivs | ||
| 13 | noroot | ||
| 14 | nosound | ||
| 15 | protocol unix | ||
| 16 | seccomp | ||
| 17 | netfilter | ||
| 18 | shell none | ||
| 19 | tracelog | ||
| 20 | |||
| 21 | # private-bin tracker | ||
| 22 | # private-tmp | ||
| 23 | # private-dev | ||
| 24 | # private-etc fonts | ||