Add utox.profile

Requested by @nyancat18 in https://github.com/netblue30/firejail/issues/1139#issuecomment-314527143
author: rusty-snake <print_hello_world+Public@protonmail.com> 2019-04-10 20:39:27 +0200
committer: rusty-snake <print_hello_world+Public@protonmail.com> 2019-04-10 20:39:27 +0200
commit: f6df6db285f6fe66fbcee281594d069c613d5295 (patch)
tree: 9269f8f65bd25e7b4bca7dd592f39dc112c019ac /etc
parent: in addition to bd976150 -- Temp fix firecfg (#2634) (diff)
download: firejail-f6df6db285f6fe66fbcee281594d069c613d5295.tar.gz
firejail-f6df6db285f6fe66fbcee281594d069c613d5295.tar.zst
firejail-f6df6db285f6fe66fbcee281594d069c613d5295.zip
1 files changed, 47 insertions, 0 deletions
diff --git a/etc/utox.profile b/etc/utox.profile
new file mode 100644
index 000000000..9216a6a05
--- /dev/null
+++ b/etc/utox.profile
@@ -0,0 +1,47 @@
+# Firejail profile for utox
+# Description: Lightweight Tox client
+# This file is overwritten after every install/update
+# Persistent local customizations
+include utox.local
+# Persistent global definitions
+include globals.local
+noblacklist ${HOME}/.config/tox
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+mkdir ${HOME}/.config/tox
+whitelist ${DOWNLOADS}
+whitelist ${HOME}/.config/tox
+include whitelist-common.inc
+include whitelist-var-common.inc
+apparmor
+caps.drop all
+ipc-namespace
+netfilter
+nodvd
+nogroups
+nonewprivs
+noroot
+notv
+nou2f
+protocol unix,inet,inet6
+seccomp
+shell none
+tracelog
+disable-mnt
+private-bin utox
+private-cache
+private-dev
+private-etc alternatives,fonts,resolv.conf,ld.so.cache,localtime,ca-certificates,ssl,pki,crypto-policies,machine-id,pulse,openal
+private-tmp
+memory-deny-write-execute
author	rusty-snake <print_hello_world+Public@protonmail.com>	2019-04-10 20:39:27 +0200
committer	rusty-snake <print_hello_world+Public@protonmail.com>	2019-04-10 20:39:27 +0200
commit	f6df6db285f6fe66fbcee281594d069c613d5295 (patch)
tree	9269f8f65bd25e7b4bca7dd592f39dc112c019ac /etc
parent	in addition to bd976150 -- Temp fix firecfg (#2634) (diff)
download	firejail-f6df6db285f6fe66fbcee281594d069c613d5295.tar.gz firejail-f6df6db285f6fe66fbcee281594d069c613d5295.tar.zst firejail-f6df6db285f6fe66fbcee281594d069c613d5295.zip

diff --git a/etc/utox.profile b/etc/utox.profile new file mode 100644 index 000000000..9216a6a05 --- /dev/null +++ b/etc/utox.profile
@@ -0,0 +1,47 @@
	1	# Firejail profile for utox
	2	# Description: Lightweight Tox client
	3	# This file is overwritten after every install/update
	4	# Persistent local customizations
	5	include utox.local
	6	# Persistent global definitions
	7	include globals.local
	8
	9	noblacklist ${HOME}/.config/tox
	10
	11	include disable-common.inc
	12	include disable-devel.inc
	13	include disable-exec.inc
	14	include disable-interpreters.inc
	15	include disable-passwdmgr.inc
	16	include disable-programs.inc
	17	include disable-xdg.inc
	18
	19	mkdir ${HOME}/.config/tox
	20	whitelist ${DOWNLOADS}
	21	whitelist ${HOME}/.config/tox
	22	include whitelist-common.inc
	23	include whitelist-var-common.inc
	24
	25	apparmor
	26	caps.drop all
	27	ipc-namespace
	28	netfilter
	29	nodvd
	30	nogroups
	31	nonewprivs
	32	noroot
	33	notv
	34	nou2f
	35	protocol unix,inet,inet6
	36	seccomp
	37	shell none
	38	tracelog
	39
	40	disable-mnt
	41	private-bin utox
	42	private-cache
	43	private-dev
	44	private-etc alternatives,fonts,resolv.conf,ld.so.cache,localtime,ca-certificates,ssl,pki,crypto-policies,machine-id,pulse,openal
	45	private-tmp
	46
	47	memory-deny-write-execute