aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar netblue30 <netblue30@yahoo.com>2016-04-13 08:50:17 -0400
committerLibravatar netblue30 <netblue30@yahoo.com>2016-04-13 08:50:17 -0400
commit0d0233986f6debb85ceb995744e6c7edbdbd678e (patch)
tree9be985033ea8b58c91413c33cf908217225e403f /etc
parentMerge pull request #428 from avoidr/profile_cleanup (diff)
parentadded blacklists for python2* and python3* (diff)
downloadfirejail-0d0233986f6debb85ceb995744e6c7edbdbd678e.tar.gz
firejail-0d0233986f6debb85ceb995744e6c7edbdbd678e.tar.zst
firejail-0d0233986f6debb85ceb995744e6c7edbdbd678e.zip
Merge pull request #432 from Fred-Barclay/master
Pale Moon profile && python blacklists
Diffstat (limited to 'etc')
-rw-r--r--etc/disable-devel.inc15
-rw-r--r--etc/palemoon.profile57
2 files changed, 72 insertions, 0 deletions
diff --git a/etc/disable-devel.inc b/etc/disable-devel.inc
index 65b31ba9b..ff7fb7f21 100644
--- a/etc/disable-devel.inc
+++ b/etc/disable-devel.inc
@@ -34,3 +34,18 @@ blacklist /usr/lib/php*
34# Ruby 34# Ruby
35blacklist /usr/bin/ruby 35blacklist /usr/bin/ruby
36blacklist /usr/lib/ruby 36blacklist /usr/lib/ruby
37
38# Python 2
39blacklist /usr/bin/python2*
40blacklist /usr/lib/python2*
41blacklist /usr/local/lib/python2*
42blacklist /usr/include/python2*
43blacklist /usr/share/python2* #If this exists (not on my machine).
44
45# Python 3
46blacklist /usr/bin/python3*
47blacklist /usr/lib/python3*
48blacklist /usr/local/lib/python3*
49blacklist /usr/share/python3*
50blacklist /usr/include/python3*
51
diff --git a/etc/palemoon.profile b/etc/palemoon.profile
new file mode 100644
index 000000000..fc4ea453b
--- /dev/null
+++ b/etc/palemoon.profile
@@ -0,0 +1,57 @@
1# Firejail profile for Pale Moon
2
3# Noblacklists
4noblacklist ~/.moonchild productions/pale moon
5noblacklist ~/.cache/moonchild productions/pale moon
6
7# Included profiles
8include /etc/firejail/disable-common.inc
9include /etc/firejail/disable-programs.inc
10include /etc/firejail/disable-devel.inc
11include /etc/firejail/whitelist-common.inc
12
13# Options
14caps.drop all
15seccomp
16protocol unix,inet,inet6,netlink
17netfilter
18tracelog
19noroot
20
21whitelist ${DOWNLOADS}
22mkdir ~/.moonchild productions
23whitelist ~/.moonchild productions
24mkdir ~/.cache
25mkdir ~/.cache/moonchild productions
26mkdir ~/.cache/moonchild productions/pale moon
27whitelist ~/.cache/moonchild productions/pale moon
28
29# These are uncommented in the Firefox profile. If you run into trouble you may
30# want to uncomment (some of) them.
31#whitelist ~/dwhelper
32#whitelist ~/.zotero
33#whitelist ~/.vimperatorrc
34#whitelist ~/.vimperator
35#whitelist ~/.pentadactylrc
36#whitelist ~/.pentadactyl
37#whitelist ~/.keysnail.js
38#whitelist ~/.config/gnome-mplayer
39#whitelist ~/.cache/gnome-mplayer/plugin
40#whitelist ~/.pki
41
42# For silverlight
43#whitelist ~/.wine-pipelight
44#whitelist ~/.wine-pipelight64
45#whitelist ~/.config/pipelight-widevine
46#whitelist ~/.config/pipelight-silverlight5.1
47
48
49# lastpass, keepassx
50whitelist ~/.keepassx
51whitelist ~/.config/keepassx
52whitelist ~/keepassx.kdbx
53whitelist ~/.lastpass
54whitelist ~/.config/lastpass
55
56# experimental features
57#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-19 15:07:07 +0000