diff options
author | netblue30 <netblue30@yahoo.com> | 2015-11-11 08:08:11 -0500 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2015-11-11 08:08:11 -0500 |
commit | 347dbc8cff7f0e17445cd547268455a09cba1f16 (patch) | |
tree | 6ad080a0dca241246ef62f25f2fc493a19bfd96a /etc | |
parent | Merge pull request #130 from al42and/skype (diff) | |
download | firejail-347dbc8cff7f0e17445cd547268455a09cba1f16.tar.gz firejail-347dbc8cff7f0e17445cd547268455a09cba1f16.tar.zst firejail-347dbc8cff7f0e17445cd547268455a09cba1f16.zip |
added whitelist-common.inc
Diffstat (limited to 'etc')
-rw-r--r-- | etc/chromium.profile | 7 | ||||
-rw-r--r-- | etc/firefox.profile | 11 | ||||
-rw-r--r-- | etc/spotify.profile | 7 | ||||
-rw-r--r-- | etc/whitelist-common.inc | 13 |
4 files changed, 16 insertions, 22 deletions
diff --git a/etc/chromium.profile b/etc/chromium.profile index 077ec62d0..980e539d5 100644 --- a/etc/chromium.profile +++ b/etc/chromium.profile | |||
@@ -12,10 +12,5 @@ netfilter | |||
12 | whitelist ~/Downloads | 12 | whitelist ~/Downloads |
13 | whitelist ~/Загрузки | 13 | whitelist ~/Загрузки |
14 | whitelist ~/.config/chromium | 14 | whitelist ~/.config/chromium |
15 | include /etc/firejail/whitelist-common.inc | ||
15 | 16 | ||
16 | # common | ||
17 | whitelist ~/.fonts | ||
18 | whitelist ~/.fonts.d | ||
19 | whitelist ~/.fontconfig | ||
20 | whitelist ~/.fonts.conf | ||
21 | whitelist ~/.fonts.conf.d | ||
diff --git a/etc/firefox.profile b/etc/firefox.profile index 954068d47..809363fd6 100644 --- a/etc/firefox.profile +++ b/etc/firefox.profile | |||
@@ -15,17 +15,8 @@ whitelist ~/Загрузки | |||
15 | whitelist ~/dwhelper | 15 | whitelist ~/dwhelper |
16 | whitelist ~/.zotero | 16 | whitelist ~/.zotero |
17 | whitelist ~/.lastpass | 17 | whitelist ~/.lastpass |
18 | whitelist ~/.gtkrc-2.0 | ||
19 | whitelist ~/.config/gtk-3.0 | ||
20 | whitelist ~/.themes/ | ||
21 | whitelist ~/.vimperatorrc | 18 | whitelist ~/.vimperatorrc |
22 | whitelist ~/.vimperator | 19 | whitelist ~/.vimperator |
23 | whitelist ~/.pentadactylrc | 20 | whitelist ~/.pentadactylrc |
24 | whitelist ~/.pentadactyl | 21 | whitelist ~/.pentadactyl |
25 | 22 | include /etc/firejail/whitelist-common.inc \ No newline at end of file | |
26 | # common | ||
27 | whitelist ~/.fonts | ||
28 | whitelist ~/.fonts.d | ||
29 | whitelist ~/.fontconfig | ||
30 | whitelist ~/.fonts.conf | ||
31 | whitelist ~/.fonts.conf.d | ||
diff --git a/etc/spotify.profile b/etc/spotify.profile index f77f900cf..414660857 100644 --- a/etc/spotify.profile +++ b/etc/spotify.profile | |||
@@ -10,6 +10,7 @@ include /etc/firejail/disable-devel.inc | |||
10 | whitelist ${HOME}/.config/spotify | 10 | whitelist ${HOME}/.config/spotify |
11 | whitelist ${HOME}/.local/share/spotify | 11 | whitelist ${HOME}/.local/share/spotify |
12 | whitelist ${HOME}/.cache/spotify | 12 | whitelist ${HOME}/.cache/spotify |
13 | include /etc/firejail/whitelist-common.inc | ||
13 | 14 | ||
14 | caps.drop all | 15 | caps.drop all |
15 | seccomp | 16 | seccomp |
@@ -17,9 +18,3 @@ protocol unix,inet,inet6 | |||
17 | netfilter | 18 | netfilter |
18 | noroot | 19 | noroot |
19 | 20 | ||
20 | # common | ||
21 | whitelist ~/.fonts | ||
22 | whitelist ~/.fonts.d | ||
23 | whitelist ~/.fontconfig | ||
24 | whitelist ~/.fonts.conf | ||
25 | whitelist ~/.fonts.conf.d | ||
diff --git a/etc/whitelist-common.inc b/etc/whitelist-common.inc new file mode 100644 index 000000000..e0c2975df --- /dev/null +++ b/etc/whitelist-common.inc | |||
@@ -0,0 +1,13 @@ | |||
1 | # common whitelist for all profiles | ||
2 | |||
3 | # fonts | ||
4 | whitelist ~/.fonts | ||
5 | whitelist ~/.fonts.d | ||
6 | whitelist ~/.fontconfig | ||
7 | whitelist ~/.fonts.conf | ||
8 | whitelist ~/.fonts.conf.d | ||
9 | |||
10 | # gtk | ||
11 | whitelist ~/.gtkrc-2.0 | ||
12 | whitelist ~/.config/gtk-3.0 | ||
13 | whitelist ~/.themes/ | ||