diff options
author | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-04-19 00:06:13 +1000 |
---|---|---|
committer | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2016-04-19 00:06:13 +1000 |
commit | bc5a06e9970fe03325f28e0cdef96ea5c596113f (patch) | |
tree | 7004b74d466f00657c40c2986fc646c6d6abdc82 /etc | |
parent | added okular and gwenview profiles (diff) | |
download | firejail-bc5a06e9970fe03325f28e0cdef96ea5c596113f.tar.gz firejail-bc5a06e9970fe03325f28e0cdef96ea5c596113f.tar.zst firejail-bc5a06e9970fe03325f28e0cdef96ea5c596113f.zip |
added gpredict profile
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/gpredict.profile | 23 |
2 files changed, 24 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 23dd8e025..6c5515894 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -8,6 +8,7 @@ blacklist ${HOME}/.Wolfram Research | |||
8 | blacklist ${HOME}/.config/mupen64plus | 8 | blacklist ${HOME}/.config/mupen64plus |
9 | blacklist ${HOME}/.config/transmission | 9 | blacklist ${HOME}/.config/transmission |
10 | blacklist ${HOME}/.config/uGet | 10 | blacklist ${HOME}/.config/uGet |
11 | blacklist ${HOME}/.config/Gpredict | ||
11 | blacklist ~/.kde/share/apps/okular | 12 | blacklist ~/.kde/share/apps/okular |
12 | blacklist ~/.kde/share/config/okularrc | 13 | blacklist ~/.kde/share/config/okularrc |
13 | blacklist ~/.kde/share/config/okularpartrc | 14 | blacklist ~/.kde/share/config/okularpartrc |
diff --git a/etc/gpredict.profile b/etc/gpredict.profile new file mode 100644 index 000000000..f53cb1b4f --- /dev/null +++ b/etc/gpredict.profile | |||
@@ -0,0 +1,23 @@ | |||
1 | # Firejail profile for gpredict. | ||
2 | |||
3 | # Noblacklist | ||
4 | noblacklist ~/.config/Gpredict | ||
5 | |||
6 | # Include | ||
7 | include /etc/firejail/disable-common.inc | ||
8 | include /etc/firejail/disable-devel.inc | ||
9 | include /etc/firejail/disable-passwdmgr.inc | ||
10 | include /etc/firejail/disable-programs.inc | ||
11 | |||
12 | # Call these options | ||
13 | caps.drop all | ||
14 | netfilter | ||
15 | noroot | ||
16 | protocol unix,inet,inet6,netlink | ||
17 | seccomp | ||
18 | tracelog | ||
19 | |||
20 | # Whitelist | ||
21 | mkdir ~/.config | ||
22 | mkdir ~/.config/Gpredict | ||
23 | whitelist ~/.config/Gpredict | ||