diff options
author | SkewedZeppelin <8296104+SkewedZeppelin@users.noreply.github.com> | 2018-04-27 15:14:13 -0400 |
---|---|---|
committer | GitHub <noreply@github.com> | 2018-04-27 15:14:13 -0400 |
commit | 3c64988fbe8994e1a5aa34ab5e28349c6ce0f680 (patch) | |
tree | 6b7653c181e167f841a6b2a9fd9a719d63ab2830 /etc | |
parent | Merges (diff) | |
parent | Add more files and directories to private-etc (diff) | |
download | firejail-3c64988fbe8994e1a5aa34ab5e28349c6ce0f680.tar.gz firejail-3c64988fbe8994e1a5aa34ab5e28349c6ce0f680.tar.zst firejail-3c64988fbe8994e1a5aa34ab5e28349c6ce0f680.zip |
Merge pull request #1914 from flacks/profiles/gajim
Update Gajim profile
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/gajim.profile | 16 |
2 files changed, 6 insertions, 11 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 9adf5d97b..ea334c289 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -348,7 +348,6 @@ blacklist ${HOME}/.kodi | |||
348 | blacklist ${HOME}/.linphone-history.db | 348 | blacklist ${HOME}/.linphone-history.db |
349 | blacklist ${HOME}/.linphonerc | 349 | blacklist ${HOME}/.linphonerc |
350 | blacklist ${HOME}/.lmmsrc.xml | 350 | blacklist ${HOME}/.lmmsrc.xml |
351 | blacklist ${HOME}/.local/lib/python2.7/site-packages | ||
352 | blacklist ${HOME}/.local/share/0ad | 351 | blacklist ${HOME}/.local/share/0ad |
353 | blacklist ${HOME}/.local/share/3909/PapersPlease | 352 | blacklist ${HOME}/.local/share/3909/PapersPlease |
354 | blacklist ${HOME}/.local/share/Empathy | 353 | blacklist ${HOME}/.local/share/Empathy |
diff --git a/etc/gajim.profile b/etc/gajim.profile index 02c818443..8e76352f4 100644 --- a/etc/gajim.profile +++ b/etc/gajim.profile | |||
@@ -9,9 +9,9 @@ noblacklist ${HOME}/.cache/gajim | |||
9 | noblacklist ${HOME}/.config/gajim | 9 | noblacklist ${HOME}/.config/gajim |
10 | noblacklist ${HOME}/.local/share/gajim | 10 | noblacklist ${HOME}/.local/share/gajim |
11 | 11 | ||
12 | # Allow python2.7 (blacklisted by disable-interpreters.inc) | 12 | # Allow Python (blacklisted by disable-interpreters.inc) |
13 | noblacklist ${PATH}/python2* | 13 | noblacklist ${PATH}/python3* |
14 | noblacklist /usr/lib/python2* | 14 | noblacklist /usr/lib/python3* |
15 | 15 | ||
16 | include /etc/firejail/disable-common.inc | 16 | include /etc/firejail/disable-common.inc |
17 | include /etc/firejail/disable-devel.inc | 17 | include /etc/firejail/disable-devel.inc |
@@ -21,12 +21,10 @@ include /etc/firejail/disable-programs.inc | |||
21 | 21 | ||
22 | mkdir ${HOME}/.cache/gajim | 22 | mkdir ${HOME}/.cache/gajim |
23 | mkdir ${HOME}/.config/gajim | 23 | mkdir ${HOME}/.config/gajim |
24 | mkdir ${HOME}/.local/lib/python2.7/site-packages/ | ||
25 | mkdir ${HOME}/.local/share/gajim | 24 | mkdir ${HOME}/.local/share/gajim |
26 | mkdir ${HOME}/Downloads | 25 | mkdir ${HOME}/Downloads |
27 | whitelist ${HOME}/.cache/gajim | 26 | whitelist ${HOME}/.cache/gajim |
28 | whitelist ${HOME}/.config/gajim | 27 | whitelist ${HOME}/.config/gajim |
29 | whitelist ${HOME}/.local/lib/python2.7/site-packages/ | ||
30 | whitelist ${HOME}/.local/share/gajim | 28 | whitelist ${HOME}/.local/share/gajim |
31 | whitelist ${HOME}/Downloads | 29 | whitelist ${HOME}/Downloads |
32 | include /etc/firejail/whitelist-common.inc | 30 | include /etc/firejail/whitelist-common.inc |
@@ -43,9 +41,7 @@ seccomp | |||
43 | shell none | 41 | shell none |
44 | 42 | ||
45 | disable-mnt | 43 | disable-mnt |
46 | private-bin python2.7,gajim | 44 | private-bin python,gajim |
47 | private-dev | 45 | private-dev |
48 | # private-etc fonts | 46 | private-etc alsa,asound.conf,ca-certificates,crypto-policies,fonts,group,hostname,hosts,ld.so.cache,ld.so.conf,localtime,machine-id,passwd,pki,pulse,resolv.conf,ssl |
49 | # private-tmp | 47 | private-tmp |
50 | # Allow the local python 2.7 site packages, in case any plugins are using these | ||
51 | read-only ${HOME}/.local/lib/python2.7/site-packages/ | ||