diff options
author | netblue30 <netblue30@yahoo.com> | 2017-05-25 10:33:07 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2017-05-25 10:33:07 -0400 |
commit | eeef0a23367ddfb00b651ec6a8aa55e85d63aa92 (patch) | |
tree | 67c6ff56e88a45d575dfc42539dd7bae54584805 /etc | |
parent | commented out ipc-namespace in most profiles - it breaks newer versions of GD... (diff) | |
download | firejail-eeef0a23367ddfb00b651ec6a8aa55e85d63aa92.tar.gz firejail-eeef0a23367ddfb00b651ec6a8aa55e85d63aa92.tar.zst firejail-eeef0a23367ddfb00b651ec6a8aa55e85d63aa92.zip |
whitelisted transmission, deluge and qbittorrent profiles; please use ~/Downloads to save your files
Diffstat (limited to 'etc')
-rw-r--r-- | etc/deluge.profile | 9 | ||||
-rw-r--r-- | etc/disable-programs.inc | 3 | ||||
-rw-r--r-- | etc/qbittorrent.profile | 13 | ||||
-rw-r--r-- | etc/transmission-gtk.profile | 7 | ||||
-rw-r--r-- | etc/transmission-qt.profile | 7 | ||||
-rw-r--r-- | etc/whitelist-common.inc | 2 |
6 files changed, 40 insertions, 1 deletions
diff --git a/etc/deluge.profile b/etc/deluge.profile index 71cf9442f..db2d339c7 100644 --- a/etc/deluge.profile +++ b/etc/deluge.profile | |||
@@ -5,13 +5,20 @@ include /etc/firejail/globals.local | |||
5 | # Persistent customizations should go in a .local file. | 5 | # Persistent customizations should go in a .local file. |
6 | include /etc/firejail/deluge.local | 6 | include /etc/firejail/deluge.local |
7 | 7 | ||
8 | # deluge bittorrernt client profile | 8 | # deluge bittorrent client profile |
9 | noblacklist ${HOME}/.config/deluge | ||
10 | |||
9 | include /etc/firejail/disable-common.inc | 11 | include /etc/firejail/disable-common.inc |
10 | include /etc/firejail/disable-programs.inc | 12 | include /etc/firejail/disable-programs.inc |
11 | # deluge is using python on Debian | 13 | # deluge is using python on Debian |
12 | #include /etc/firejail/disable-devel.inc | 14 | #include /etc/firejail/disable-devel.inc |
13 | include /etc/firejail/disable-passwdmgr.inc | 15 | include /etc/firejail/disable-passwdmgr.inc |
14 | 16 | ||
17 | mkdir ${HOME}/.config/deluge | ||
18 | whitelist ${HOME}/.config/deluge | ||
19 | whitelist ${DOWNLOADS} | ||
20 | include /etc/firejail/whitelist-common.inc | ||
21 | |||
15 | caps.drop all | 22 | caps.drop all |
16 | netfilter | 23 | netfilter |
17 | nonewprivs | 24 | nonewprivs |
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index df7d8714e..12f6d6d6d 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -69,6 +69,7 @@ blacklist ${HOME}/.config/clipit | |||
69 | blacklist ${HOME}/.config/cmus | 69 | blacklist ${HOME}/.config/cmus |
70 | blacklist ${HOME}/.config/darktable | 70 | blacklist ${HOME}/.config/darktable |
71 | blacklist ${HOME}/.config/deadbeef | 71 | blacklist ${HOME}/.config/deadbeef |
72 | blacklist ${HOME}/.config/deluge | ||
72 | blacklist ${HOME}/.config/dolphinrc | 73 | blacklist ${HOME}/.config/dolphinrc |
73 | blacklist ${HOME}/.config/dragonplayerrc | 74 | blacklist ${HOME}/.config/dragonplayerrc |
74 | blacklist ${HOME}/.config/enchant | 75 | blacklist ${HOME}/.config/enchant |
@@ -124,6 +125,7 @@ blacklist ${HOME}/.config/pix | |||
124 | blacklist ${HOME}/.config/pluma | 125 | blacklist ${HOME}/.config/pluma |
125 | blacklist ${HOME}/.config/psi+ | 126 | blacklist ${HOME}/.config/psi+ |
126 | blacklist ${HOME}/.config/ristretto | 127 | blacklist ${HOME}/.config/ristretto |
128 | blacklist ${HOME}/.config/qBittorrent | ||
127 | blacklist ${HOME}/.config/qpdfview | 129 | blacklist ${HOME}/.config/qpdfview |
128 | blacklist ${HOME}/.config/qt5ct | 130 | blacklist ${HOME}/.config/qt5ct |
129 | blacklist ${HOME}/.config/qupzilla | 131 | blacklist ${HOME}/.config/qupzilla |
@@ -369,6 +371,7 @@ blacklist ${HOME}/.cache/netsurf | |||
369 | blacklist ${HOME}/.cache/opera | 371 | blacklist ${HOME}/.cache/opera |
370 | blacklist ${HOME}/.cache/opera-beta | 372 | blacklist ${HOME}/.cache/opera-beta |
371 | blacklist ${HOME}/.cache/org.gnome.Books | 373 | blacklist ${HOME}/.cache/org.gnome.Books |
374 | blacklist ${HOME}/.cache/qBittorrent | ||
372 | blacklist ${HOME}/.cache/qutebrowser | 375 | blacklist ${HOME}/.cache/qutebrowser |
373 | blacklist ${HOME}/.cache/simple-scan | 376 | blacklist ${HOME}/.cache/simple-scan |
374 | blacklist ${HOME}/.cache/slimjet | 377 | blacklist ${HOME}/.cache/slimjet |
diff --git a/etc/qbittorrent.profile b/etc/qbittorrent.profile index 72c6b9491..b696c207f 100644 --- a/etc/qbittorrent.profile +++ b/etc/qbittorrent.profile | |||
@@ -7,11 +7,24 @@ include /etc/firejail/qbittorrent.local | |||
7 | 7 | ||
8 | # qbittorrent bittorrent profile | 8 | # qbittorrent bittorrent profile |
9 | noblacklist ~/.config/qt5ct | 9 | noblacklist ~/.config/qt5ct |
10 | noblacklist ~/.config/qBittorrent | ||
11 | noblacklist ~/.cache/qBittorrent | ||
12 | |||
10 | include /etc/firejail/disable-common.inc | 13 | include /etc/firejail/disable-common.inc |
11 | include /etc/firejail/disable-programs.inc | 14 | include /etc/firejail/disable-programs.inc |
12 | include /etc/firejail/disable-devel.inc | 15 | include /etc/firejail/disable-devel.inc |
13 | include /etc/firejail/disable-passwdmgr.inc | 16 | include /etc/firejail/disable-passwdmgr.inc |
14 | 17 | ||
18 | mkdir ~/.local/share/data/qBittorrent | ||
19 | whitelist ~/.local/share/data/qBittorrent | ||
20 | whitelist ~/.config/qt5ct | ||
21 | mkdir ~/.config/qBittorrent | ||
22 | whitelist ~/.config/qBittorrent | ||
23 | mkdir ~/.cache/qBittorrent | ||
24 | whitelist ~/.cache/qBittorrent | ||
25 | whitelist ${DOWNLOADS} | ||
26 | include /etc/firejail/whitelist-common.inc | ||
27 | |||
15 | caps.drop all | 28 | caps.drop all |
16 | machine-id | 29 | machine-id |
17 | netfilter | 30 | netfilter |
diff --git a/etc/transmission-gtk.profile b/etc/transmission-gtk.profile index 5834b7602..84d01179c 100644 --- a/etc/transmission-gtk.profile +++ b/etc/transmission-gtk.profile | |||
@@ -14,6 +14,13 @@ include /etc/firejail/disable-programs.inc | |||
14 | include /etc/firejail/disable-devel.inc | 14 | include /etc/firejail/disable-devel.inc |
15 | include /etc/firejail/disable-passwdmgr.inc | 15 | include /etc/firejail/disable-passwdmgr.inc |
16 | 16 | ||
17 | mkdir ~/.config/transmission | ||
18 | whitelist ~/.config/transmission | ||
19 | mkdir ~/.cache/transmission | ||
20 | whitelist ~/.cache/transmission | ||
21 | whitelist ${DOWNLOADS} | ||
22 | include /etc/firejail/whitelist-common.inc | ||
23 | |||
17 | caps.drop all | 24 | caps.drop all |
18 | netfilter | 25 | netfilter |
19 | nonewprivs | 26 | nonewprivs |
diff --git a/etc/transmission-qt.profile b/etc/transmission-qt.profile index f933c9e62..70a5af575 100644 --- a/etc/transmission-qt.profile +++ b/etc/transmission-qt.profile | |||
@@ -14,6 +14,13 @@ include /etc/firejail/disable-programs.inc | |||
14 | include /etc/firejail/disable-devel.inc | 14 | include /etc/firejail/disable-devel.inc |
15 | include /etc/firejail/disable-passwdmgr.inc | 15 | include /etc/firejail/disable-passwdmgr.inc |
16 | 16 | ||
17 | mkdir ~/.config/transmission | ||
18 | whitelist ~/.config/transmission | ||
19 | mkdir ~/.cache/transmission | ||
20 | whitelist ~/.cache/transmission | ||
21 | whitelist ${DOWNLOADS} | ||
22 | include /etc/firejail/whitelist-common.inc | ||
23 | |||
17 | caps.drop all | 24 | caps.drop all |
18 | netfilter | 25 | netfilter |
19 | nonewprivs | 26 | nonewprivs |
diff --git a/etc/whitelist-common.inc b/etc/whitelist-common.inc index ab05ad24a..d5d1c19ec 100644 --- a/etc/whitelist-common.inc +++ b/etc/whitelist-common.inc | |||
@@ -30,6 +30,8 @@ whitelist ~/.config/gtk-3.0 | |||
30 | whitelist ~/.themes | 30 | whitelist ~/.themes |
31 | whitelist ~/.kde/share/config/gtkrc | 31 | whitelist ~/.kde/share/config/gtkrc |
32 | whitelist ~/.kde/share/config/gtkrc-2.0 | 32 | whitelist ~/.kde/share/config/gtkrc-2.0 |
33 | whitelist ~/.gnome2 | ||
34 | whitelist ~/.gnome2-private | ||
33 | 35 | ||
34 | # dconf | 36 | # dconf |
35 | mkdir ~/.config/dconf | 37 | mkdir ~/.config/dconf |