diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2023-01-04 21:20:37 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2023-01-04 21:20:37 +0000 |
commit | 8eba8de944ae88204571453b17e17253284ac822 (patch) | |
tree | 4eda26407eff1aa4ad4697b3015cdf2e6ae7c228 /etc | |
parent | sylpheed: refactoring (diff) | |
download | firejail-8eba8de944ae88204571453b17e17253284ac822.tar.gz firejail-8eba8de944ae88204571453b17e17253284ac822.tar.zst firejail-8eba8de944ae88204571453b17e17253284ac822.zip |
email-common: refactoring
No longer used for claws-mail and sylpheed only.
Diffstat (limited to 'etc')
-rw-r--r-- | etc/profile-a-l/email-common.profile | 24 |
1 files changed, 16 insertions, 8 deletions
diff --git a/etc/profile-a-l/email-common.profile b/etc/profile-a-l/email-common.profile index 86fb27514..2c57dc108 100644 --- a/etc/profile-a-l/email-common.profile +++ b/etc/profile-a-l/email-common.profile | |||
@@ -1,5 +1,5 @@ | |||
1 | # Firejail profile for email-common | 1 | # Firejail profile for email-common |
2 | # Description: Common profile for claws-mail and sylpheed email clients | 2 | # Description: Common profile for GUI mail clients |
3 | # This file is overwritten after every install/update | 3 | # This file is overwritten after every install/update |
4 | # Persistent local customizations | 4 | # Persistent local customizations |
5 | include email-common.local | 5 | include email-common.local |
@@ -14,6 +14,8 @@ noblacklist ${HOME}/.signature | |||
14 | # when storing mail outside the default ${HOME}/Mail path, 'noblacklist' the custom path in your email-common.local | 14 | # when storing mail outside the default ${HOME}/Mail path, 'noblacklist' the custom path in your email-common.local |
15 | # and 'blacklist' it in your disable-common.local too so it is kept hidden from other applications | 15 | # and 'blacklist' it in your disable-common.local too so it is kept hidden from other applications |
16 | noblacklist ${HOME}/Mail | 16 | noblacklist ${HOME}/Mail |
17 | noblacklist /var/mail | ||
18 | noblacklist /var/spool/mail | ||
17 | 19 | ||
18 | noblacklist ${DOCUMENTS} | 20 | noblacklist ${DOCUMENTS} |
19 | 21 | ||
@@ -38,6 +40,8 @@ whitelist ${HOME}/Mail | |||
38 | whitelist ${RUNUSER}/gnupg | 40 | whitelist ${RUNUSER}/gnupg |
39 | whitelist /usr/share/gnupg | 41 | whitelist /usr/share/gnupg |
40 | whitelist /usr/share/gnupg2 | 42 | whitelist /usr/share/gnupg2 |
43 | whitelist /var/mail | ||
44 | whitelist /var/spool/mail | ||
41 | include whitelist-common.inc | 45 | include whitelist-common.inc |
42 | include whitelist-runuser-common.inc | 46 | include whitelist-runuser-common.inc |
43 | include whitelist-usr-share-common.inc | 47 | include whitelist-usr-share-common.inc |
@@ -69,16 +73,20 @@ private-etc alternatives,ca-certificates,crypto-policies,dconf,fonts,gcrypt,gnup | |||
69 | private-tmp | 73 | private-tmp |
70 | # encrypting and signing email | 74 | # encrypting and signing email |
71 | writable-run-user | 75 | writable-run-user |
76 | writable-var | ||
72 | 77 | ||
78 | dbus-user filter | ||
79 | dbus-user.talk ca.desrt.dconf | ||
80 | dbus-user.talk org.freedesktop.Notifications | ||
81 | dbus-user.talk org.freedesktop.secrets | ||
82 | dbus-user.talk org.gnome.keyring | ||
83 | dbus-user.talk org.gnome.keyring.PrivatePrompter | ||
84 | dbus-user.talk org.gnome.keyring.SystemPrompter | ||
85 | dbus-user.talk org.gnome.seahorse | ||
86 | dbus-user.talk org.gnome.seahorse.Application | ||
87 | dbus-user.talk org.mozilla.* | ||
73 | dbus-system none | 88 | dbus-system none |
74 | 89 | ||
75 | # If you want to read local mail stored in /var/mail, add the following to email-common.local: | ||
76 | #noblacklist /var/mail | ||
77 | #noblacklist /var/spool/mail | ||
78 | #whitelist /var/mail | ||
79 | #whitelist /var/spool/mail | ||
80 | #writable-var | ||
81 | |||
82 | read-only ${HOME}/.mozilla/firefox/profiles.ini | 90 | read-only ${HOME}/.mozilla/firefox/profiles.ini |
83 | read-only ${HOME}/.signature | 91 | read-only ${HOME}/.signature |
84 | restrict-namespaces | 92 | restrict-namespaces |