diff options
author | 0x6a <0x6a@gmx.net> | 2021-07-20 21:29:21 +0200 |
---|---|---|
committer | 0x6a <0x6a@gmx.net> | 2021-07-20 21:30:53 +0200 |
commit | 766931c2a5d255351ac96bc6902c05fc10e4cc7c (patch) | |
tree | 4a1f0c537ea6aaff7bb2bf24989c17181b571fe4 /etc | |
parent | Fix Firefox 'Profile not found' - whitelist /run/user/xxx/firefox (diff) | |
download | firejail-766931c2a5d255351ac96bc6902c05fc10e4cc7c.tar.gz firejail-766931c2a5d255351ac96bc6902c05fc10e4cc7c.tar.zst firejail-766931c2a5d255351ac96bc6902c05fc10e4cc7c.zip |
Blacklist /*firefox* except for firefox itself
Diffstat (limited to 'etc')
-rw-r--r-- | etc/inc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/profile-a-l/firefox-common.profile | 3 |
2 files changed, 3 insertions, 1 deletions
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc index 5fe2f8c28..c87948b27 100644 --- a/etc/inc/disable-programs.inc +++ b/etc/inc/disable-programs.inc | |||
@@ -1096,3 +1096,4 @@ deny ${HOME}/.cache/yandex-browser | |||
1096 | deny ${HOME}/.cache/yandex-browser-beta | 1096 | deny ${HOME}/.cache/yandex-browser-beta |
1097 | deny ${HOME}/.cache/youtube-dl | 1097 | deny ${HOME}/.cache/youtube-dl |
1098 | deny ${HOME}/.cache/youtube-viewer | 1098 | deny ${HOME}/.cache/youtube-viewer |
1099 | deny ${RUNUSER}/*firefox* | ||
diff --git a/etc/profile-a-l/firefox-common.profile b/etc/profile-a-l/firefox-common.profile index 6110bc2e9..557e3559b 100644 --- a/etc/profile-a-l/firefox-common.profile +++ b/etc/profile-a-l/firefox-common.profile | |||
@@ -14,6 +14,7 @@ include firefox-common.local | |||
14 | 14 | ||
15 | nodeny ${HOME}/.pki | 15 | nodeny ${HOME}/.pki |
16 | nodeny ${HOME}/.local/share/pki | 16 | nodeny ${HOME}/.local/share/pki |
17 | nodeny ${RUNUSER}/*firefox* # location of profiles if profile-sync-daemon is used | ||
17 | 18 | ||
18 | include disable-common.inc | 19 | include disable-common.inc |
19 | include disable-devel.inc | 20 | include disable-devel.inc |
@@ -26,7 +27,7 @@ mkdir ${HOME}/.local/share/pki | |||
26 | allow ${DOWNLOADS} | 27 | allow ${DOWNLOADS} |
27 | allow ${HOME}/.pki | 28 | allow ${HOME}/.pki |
28 | allow ${HOME}/.local/share/pki | 29 | allow ${HOME}/.local/share/pki |
29 | whitelist ${RUNUSER}/*firefox* | 30 | allow ${RUNUSER}/*firefox* |
30 | include whitelist-common.inc | 31 | include whitelist-common.inc |
31 | include whitelist-runuser-common.inc | 32 | include whitelist-runuser-common.inc |
32 | include whitelist-var-common.inc | 33 | include whitelist-var-common.inc |