diff options
author | Tad <tad@spotco.us> | 2018-04-21 21:12:47 -0400 |
---|---|---|
committer | Tad <tad@spotco.us> | 2018-04-21 21:12:47 -0400 |
commit | 7e0f668bb2706f34dab0bbe8e2ce6785578ac1d4 (patch) | |
tree | 2ef9a4719a16d1566c9f90b566080c0e188538e0 /etc | |
parent | Cleanup clion.profile (diff) | |
download | firejail-7e0f668bb2706f34dab0bbe8e2ce6785578ac1d4.tar.gz firejail-7e0f668bb2706f34dab0bbe8e2ce6785578ac1d4.tar.zst firejail-7e0f668bb2706f34dab0bbe8e2ce6785578ac1d4.zip |
Add a profile for ppsspp and scallion
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/ppsspp.profile | 42 | ||||
-rw-r--r-- | etc/scallion.profile | 42 |
3 files changed, 85 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index b8c49b28a..d3dc87089 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -189,6 +189,7 @@ blacklist ${HOME}/.config/Pinta | |||
189 | blacklist ${HOME}/.config/pitivi | 189 | blacklist ${HOME}/.config/pitivi |
190 | blacklist ${HOME}/.config/pix | 190 | blacklist ${HOME}/.config/pix |
191 | blacklist ${HOME}/.config/pluma | 191 | blacklist ${HOME}/.config/pluma |
192 | blacklist ${HOME}/.config/ppsspp | ||
192 | blacklist ${HOME}/.config/psi+ | 193 | blacklist ${HOME}/.config/psi+ |
193 | blacklist ${HOME}/.config/qBittorrent | 194 | blacklist ${HOME}/.config/qBittorrent |
194 | blacklist ${HOME}/.config/qBittorrentrc | 195 | blacklist ${HOME}/.config/qBittorrentrc |
diff --git a/etc/ppsspp.profile b/etc/ppsspp.profile new file mode 100644 index 000000000..e19a7b42a --- /dev/null +++ b/etc/ppsspp.profile | |||
@@ -0,0 +1,42 @@ | |||
1 | # Firejail profile for ppsspp | ||
2 | # This file is overwritten after every install/update | ||
3 | # Persistent local customizations | ||
4 | include /etc/firejail/ppsspp.local | ||
5 | # Persistent global definitions | ||
6 | include /etc/firejail/globals.local | ||
7 | |||
8 | noblacklist ${HOME}/.config/ppsspp | ||
9 | # with >=llvm-4 mesa drivers need llvm stuff | ||
10 | noblacklist /usr/lib/llvm* | ||
11 | |||
12 | include /etc/firejail/disable-common.inc | ||
13 | include /etc/firejail/disable-devel.inc | ||
14 | include /etc/firejail/disable-interpreters.inc | ||
15 | include /etc/firejail/disable-passwdmgr.inc | ||
16 | include /etc/firejail/disable-programs.inc | ||
17 | |||
18 | include /etc/firejail/whitelist-var-common.inc | ||
19 | |||
20 | caps.drop all | ||
21 | ipc-namespace | ||
22 | netfilter | ||
23 | net none | ||
24 | nodbus | ||
25 | nodvd | ||
26 | nogroups | ||
27 | nonewprivs | ||
28 | noroot | ||
29 | notv | ||
30 | novideo | ||
31 | protocol unix,netlink | ||
32 | seccomp | ||
33 | shell none | ||
34 | |||
35 | # private-dev is disabled to allow controller support | ||
36 | #private-dev | ||
37 | private-etc asound.conf,ca-certificates,drirc,fonts,group,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,localtime,nsswitch.conf,passwd,pulse,resolv.conf,ssl,pki,crypto-policies | ||
38 | private-opt ppsspp | ||
39 | private-tmp | ||
40 | |||
41 | noexec ${HOME} | ||
42 | noexec /tmp | ||
diff --git a/etc/scallion.profile b/etc/scallion.profile new file mode 100644 index 000000000..645f0423c --- /dev/null +++ b/etc/scallion.profile | |||
@@ -0,0 +1,42 @@ | |||
1 | # Firejail profile for scallion | ||
2 | # This file is overwritten after every install/update | ||
3 | quiet | ||
4 | # Persistent local customizations | ||
5 | include /etc/firejail/scallion.local | ||
6 | # Persistent global definitions | ||
7 | include /etc/firejail/globals.local | ||
8 | |||
9 | noblacklist ${PATH}/llvm* | ||
10 | noblacklist /usr/lib/llvm* | ||
11 | noblacklist ${PATH}/openssl | ||
12 | noblacklist ${PATH}/openssl-1.0 | ||
13 | |||
14 | include /etc/firejail/disable-common.inc | ||
15 | include /etc/firejail/disable-interpreters.inc | ||
16 | include /etc/firejail/disable-passwdmgr.inc | ||
17 | include /etc/firejail/disable-programs.inc | ||
18 | |||
19 | include /etc/firejail/whitelist-var-common.inc | ||
20 | |||
21 | caps.drop all | ||
22 | ipc-namespace | ||
23 | net none | ||
24 | nodbus | ||
25 | nodvd | ||
26 | nogroups | ||
27 | nonewprivs | ||
28 | noroot | ||
29 | nosound | ||
30 | notv | ||
31 | novideo | ||
32 | protocol unix | ||
33 | seccomp | ||
34 | shell none | ||
35 | |||
36 | disable-mnt | ||
37 | private | ||
38 | private-dev | ||
39 | private-tmp | ||
40 | |||
41 | noexec ${HOME} | ||
42 | noexec /tmp | ||