diff options
author | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-07-09 05:28:39 +1000 |
---|---|---|
committer | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-07-09 05:28:39 +1000 |
commit | 56a34f63f22d20e2dd51f3a0932dc07f2647f252 (patch) | |
tree | 775d5f108fd37afdeb09e97682147a65fd50098d /etc | |
parent | tightened and fixed permissions warning (diff) | |
download | firejail-56a34f63f22d20e2dd51f3a0932dc07f2647f252.tar.gz firejail-56a34f63f22d20e2dd51f3a0932dc07f2647f252.tar.zst firejail-56a34f63f22d20e2dd51f3a0932dc07f2647f252.zip |
If you give a mouse a cookie...
Diffstat (limited to 'etc')
-rw-r--r-- | etc/atril.profile | 8 | ||||
-rw-r--r-- | etc/evince.profile | 3 | ||||
-rw-r--r-- | etc/xreader.profile | 8 |
3 files changed, 14 insertions, 5 deletions
diff --git a/etc/atril.profile b/etc/atril.profile index 8ee7da173..bfe731bec 100644 --- a/etc/atril.profile +++ b/etc/atril.profile | |||
@@ -7,10 +7,14 @@ include /etc/firejail/disable-devel.inc | |||
7 | include /etc/firejail/disable-passwdmgr.inc | 7 | include /etc/firejail/disable-passwdmgr.inc |
8 | 8 | ||
9 | caps.drop all | 9 | caps.drop all |
10 | netfilter | ||
11 | nonewprivs | 10 | nonewprivs |
11 | nogroups | ||
12 | noroot | 12 | noroot |
13 | nosound | 13 | nosound |
14 | protocol unix,inet,inet6 | 14 | protocol unix |
15 | seccomp | 15 | seccomp |
16 | shell none | ||
16 | tracelog | 17 | tracelog |
18 | |||
19 | private-bin atril, atril-previewer, atril-thumbnailer | ||
20 | private-dev | ||
diff --git a/etc/evince.profile b/etc/evince.profile index 9899da84d..530ce959a 100644 --- a/etc/evince.profile +++ b/etc/evince.profile | |||
@@ -6,9 +6,10 @@ include /etc/firejail/disable-passwdmgr.inc | |||
6 | 6 | ||
7 | caps.drop all | 7 | caps.drop all |
8 | nonewprivs | 8 | nonewprivs |
9 | nogroups | ||
9 | noroot | 10 | noroot |
10 | nosound | 11 | nosound |
11 | protocol unix,inet,inet6 | 12 | protocol unix |
12 | seccomp | 13 | seccomp |
13 | 14 | ||
14 | shell none | 15 | shell none |
diff --git a/etc/xreader.profile b/etc/xreader.profile index 2cf109f09..fed9d4db5 100644 --- a/etc/xreader.profile +++ b/etc/xreader.profile | |||
@@ -9,10 +9,14 @@ include /etc/firejail/disable-devel.inc | |||
9 | include /etc/firejail/disable-passwdmgr.inc | 9 | include /etc/firejail/disable-passwdmgr.inc |
10 | 10 | ||
11 | caps.drop all | 11 | caps.drop all |
12 | netfilter | ||
13 | nonewprivs | 12 | nonewprivs |
13 | nogroups | ||
14 | noroot | 14 | noroot |
15 | nosound | 15 | nosound |
16 | protocol unix,inet,inet6 | 16 | protocol unix |
17 | seccomp | 17 | seccomp |
18 | shell none | ||
18 | tracelog | 19 | tracelog |
20 | |||
21 | private-bin xreader, xreader-previewer, xreader-thumbnailer | ||
22 | private-dev | ||