diff options
author | netblue30 <netblue30@protonmail.com> | 2022-03-29 11:41:30 -0400 |
---|---|---|
committer | GitHub <noreply@github.com> | 2022-03-29 11:41:30 -0400 |
commit | 108b7e3a2dcea0a9084024658046d2a4c13d3f8c (patch) | |
tree | f14b552f4cfe020ba07ceaa82e91c55a258a4edc /etc | |
parent | megaglest.profile: Add allow-lua.inc (#5066) (diff) | |
parent | disable-programs.inc: blacklist ~/Applications dir (diff) | |
download | firejail-108b7e3a2dcea0a9084024658046d2a4c13d3f8c.tar.gz firejail-108b7e3a2dcea0a9084024658046d2a4c13d3f8c.tar.zst firejail-108b7e3a2dcea0a9084024658046d2a4c13d3f8c.zip |
Merge pull request #5071 from kmk3/add-appimage-dir
appimage: blacklist and make ~/Applications dir read-only
Diffstat (limited to 'etc')
-rw-r--r-- | etc/inc/disable-common.inc | 3 | ||||
-rw-r--r-- | etc/inc/disable-programs.inc | 1 |
2 files changed, 4 insertions, 0 deletions
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc index 080a7f3a1..a2f4ebf2a 100644 --- a/etc/inc/disable-common.inc +++ b/etc/inc/disable-common.inc | |||
@@ -370,6 +370,9 @@ read-only ${HOME}/.nvm | |||
370 | read-only ${HOME}/.rustup | 370 | read-only ${HOME}/.rustup |
371 | read-only ${HOME}/bin | 371 | read-only ${HOME}/bin |
372 | 372 | ||
373 | # Write-protection for portable apps | ||
374 | read-only ${HOME}/Applications # used for storing AppImages | ||
375 | |||
373 | # Write-protection for desktop entries | 376 | # Write-protection for desktop entries |
374 | read-only ${HOME}/.config/menus | 377 | read-only ${HOME}/.config/menus |
375 | read-only ${HOME}/.gnome/apps | 378 | read-only ${HOME}/.gnome/apps |
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc index efe1b2572..558ae2446 100644 --- a/etc/inc/disable-programs.inc +++ b/etc/inc/disable-programs.inc | |||
@@ -1144,6 +1144,7 @@ blacklist ${HOME}/.yarn-config | |||
1144 | blacklist ${HOME}/.yarncache | 1144 | blacklist ${HOME}/.yarncache |
1145 | blacklist ${HOME}/.yarnrc | 1145 | blacklist ${HOME}/.yarnrc |
1146 | blacklist ${HOME}/.zoom | 1146 | blacklist ${HOME}/.zoom |
1147 | blacklist ${HOME}/Applications # used for storing AppImages | ||
1147 | blacklist ${HOME}/Arduino | 1148 | blacklist ${HOME}/Arduino |
1148 | blacklist ${HOME}/Monero/wallets | 1149 | blacklist ${HOME}/Monero/wallets |
1149 | blacklist ${HOME}/Nextcloud | 1150 | blacklist ${HOME}/Nextcloud |