diff options
author | Andreas Hunkeler <karneades@protonmail.com> | 2020-02-22 17:07:28 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2020-02-22 16:07:28 +0000 |
commit | 5e8ba82b8410418e160c27077edcd0717562dcb0 (patch) | |
tree | b45a9a3b789b56e2451e6b63a5dee13afa50eeb1 /etc | |
parent | Allow exec from /usr/libexec & co. with AppArmor (diff) | |
download | firejail-5e8ba82b8410418e160c27077edcd0717562dcb0.tar.gz firejail-5e8ba82b8410418e160c27077edcd0717562dcb0.tar.zst firejail-5e8ba82b8410418e160c27077edcd0717562dcb0.zip |
Add profile for offical Linux Teams application (#3152)
* Add profile for offical Linux Teams application
* fix: add mkdir suggestions in Teams profile
* Merge suggestions for Teams profile
* Add suggestion to Teams profile
* Add Teams to firecfg.config
* Add paths from Teams profile to disable-programs
* Remove the duplicated whitelist for downloads in Teams profile
Co-Authored-By: rusty-snake <print_hello_world+GitHub@protonmail.com>
* Cleanup teams profile after testing
* Add comment to Teams profile
Co-authored-by: rusty-snake <print_hello_world+GitHub@protonmail.com>
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-programs.inc | 2 | ||||
-rw-r--r-- | etc/teams.profile | 36 |
2 files changed, 38 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 7e4947e6f..db257c1b6 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -247,6 +247,7 @@ blacklist ${HOME}/.config/mate/mate-dictionary | |||
247 | blacklist ${HOME}/.config/meld | 247 | blacklist ${HOME}/.config/meld |
248 | blacklist ${HOME}/.config/meteo-qt | 248 | blacklist ${HOME}/.config/meteo-qt |
249 | blacklist ${HOME}/.config/mfusion | 249 | blacklist ${HOME}/.config/mfusion |
250 | blacklist ${HOME}/.config/Microsoft | ||
250 | blacklist ${HOME}/.config/midori | 251 | blacklist ${HOME}/.config/midori |
251 | blacklist ${HOME}/.config/mono | 252 | blacklist ${HOME}/.config/mono |
252 | blacklist ${HOME}/.config/mpDris2 | 253 | blacklist ${HOME}/.config/mpDris2 |
@@ -310,6 +311,7 @@ blacklist ${HOME}/.config/sqlitebrowser | |||
310 | blacklist ${HOME}/.config/stellarium | 311 | blacklist ${HOME}/.config/stellarium |
311 | blacklist ${HOME}/.config/supertuxkart | 312 | blacklist ${HOME}/.config/supertuxkart |
312 | blacklist ${HOME}/.config/synfig | 313 | blacklist ${HOME}/.config/synfig |
314 | blacklist ${HOME}/.config/teams | ||
313 | blacklist ${HOME}/.config/telepathy-account-widgets | 315 | blacklist ${HOME}/.config/telepathy-account-widgets |
314 | blacklist ${HOME}/.config/torbrowser | 316 | blacklist ${HOME}/.config/torbrowser |
315 | blacklist ${HOME}/.config/totem | 317 | blacklist ${HOME}/.config/totem |
diff --git a/etc/teams.profile b/etc/teams.profile new file mode 100644 index 000000000..8b60a941e --- /dev/null +++ b/etc/teams.profile | |||
@@ -0,0 +1,36 @@ | |||
1 | # Firejail profile for teams | ||
2 | # Description: Official Microsoft Teams client for Linux using Electron. | ||
3 | # This file is overwritten after every install/update | ||
4 | # Known issues: | ||
5 | # * if Teams crashes on startup try using "ignore apparmor" in your local config | ||
6 | # Persistent local customizations | ||
7 | include teams.local | ||
8 | # Persistent global definitions | ||
9 | # added by included profile | ||
10 | #include globals.local | ||
11 | |||
12 | noblacklist ${HOME}/.config/teams | ||
13 | noblacklist ${HOME}/.config/Microsoft | ||
14 | |||
15 | include disable-devel.inc | ||
16 | include disable-exec.inc | ||
17 | include disable-interpreters.inc | ||
18 | |||
19 | mkdir ${HOME}/.config/teams | ||
20 | mkdir ${HOME}/.config/Microsoft | ||
21 | whitelist ${HOME}/.config/teams | ||
22 | whitelist ${HOME}/.config/Microsoft | ||
23 | include whitelist-common.inc | ||
24 | include whitelist-var-common.inc | ||
25 | |||
26 | nou2f | ||
27 | shell none | ||
28 | tracelog | ||
29 | |||
30 | disable-mnt | ||
31 | private-cache | ||
32 | private-dev | ||
33 | private-tmp | ||
34 | |||
35 | # Redirect | ||
36 | include electron.profile | ||