diff options
author | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2017-11-28 20:39:14 -0600 |
---|---|---|
committer | Fred-Barclay <Fred-Barclay@users.noreply.github.com> | 2017-11-28 20:39:14 -0600 |
commit | 36d3043762c69150de5adae754ff5c68431af36c (patch) | |
tree | 955009f8d4bd8b24ddd40ca661a283818bb19749 /etc | |
parent | kopete samba fix (part 2) (diff) | |
download | firejail-36d3043762c69150de5adae754ff5c68431af36c.tar.gz firejail-36d3043762c69150de5adae754ff5c68431af36c.tar.zst firejail-36d3043762c69150de5adae754ff5c68431af36c.zip |
(Re)add disable-mnt to common browser profiles.
Diffstat (limited to 'etc')
-rw-r--r-- | etc/brave.profile | 2 | ||||
-rw-r--r-- | etc/chromium.profile | 1 | ||||
-rw-r--r-- | etc/conkeror.profile | 2 | ||||
-rw-r--r-- | etc/cyberfox.profile | 3 | ||||
-rw-r--r-- | etc/flashpeak-slimjet.profile | 2 | ||||
-rw-r--r-- | etc/google-chrome.profile | 1 | ||||
-rw-r--r-- | etc/icecat.profile | 1 | ||||
-rw-r--r-- | etc/midori.profile | 2 | ||||
-rw-r--r-- | etc/netsurf.profile | 2 | ||||
-rw-r--r-- | etc/opera-beta.profile | 2 | ||||
-rw-r--r-- | etc/opera.profile | 2 | ||||
-rw-r--r-- | etc/palemoon.profile | 2 | ||||
-rw-r--r-- | etc/seamonkey.profile | 1 | ||||
-rw-r--r-- | etc/start-tor-browser.profile | 1 | ||||
-rw-r--r-- | etc/torbrowser-launcher.profile | 1 | ||||
-rw-r--r-- | etc/vivaldi.profile | 1 | ||||
-rw-r--r-- | etc/yandex-browser.profile | 1 |
17 files changed, 25 insertions, 2 deletions
diff --git a/etc/brave.profile b/etc/brave.profile index 476d1575a..668e8a244 100644 --- a/etc/brave.profile +++ b/etc/brave.profile | |||
@@ -35,4 +35,4 @@ notv | |||
35 | # protocol unix,inet,inet6,netlink | 35 | # protocol unix,inet,inet6,netlink |
36 | # seccomp | 36 | # seccomp |
37 | 37 | ||
38 | # disable-mnt | 38 | disable-mnt |
diff --git a/etc/chromium.profile b/etc/chromium.profile index 281d8bf76..64d790121 100644 --- a/etc/chromium.profile +++ b/etc/chromium.profile | |||
@@ -32,6 +32,7 @@ nogroups | |||
32 | notv | 32 | notv |
33 | shell none | 33 | shell none |
34 | 34 | ||
35 | disable-mnt | ||
35 | # private-bin chromium,chromium-browser,chromedriver | 36 | # private-bin chromium,chromium-browser,chromedriver |
36 | private-dev | 37 | private-dev |
37 | # private-tmp - problems with multiple browser sessions | 38 | # private-tmp - problems with multiple browser sessions |
diff --git a/etc/conkeror.profile b/etc/conkeror.profile index 38c4fdd68..2489e2df4 100644 --- a/etc/conkeror.profile +++ b/etc/conkeror.profile | |||
@@ -31,3 +31,5 @@ noroot | |||
31 | notv | 31 | notv |
32 | protocol unix,inet,inet6 | 32 | protocol unix,inet,inet6 |
33 | seccomp | 33 | seccomp |
34 | |||
35 | disable-mnt | ||
diff --git a/etc/cyberfox.profile b/etc/cyberfox.profile index a670f6aa3..66cd27461 100644 --- a/etc/cyberfox.profile +++ b/etc/cyberfox.profile | |||
@@ -62,9 +62,10 @@ seccomp | |||
62 | shell none | 62 | shell none |
63 | tracelog | 63 | tracelog |
64 | 64 | ||
65 | disable-mnt | ||
65 | # private-bin cyberfox,which,sh,dbus-launch,dbus-send,env | 66 | # private-bin cyberfox,which,sh,dbus-launch,dbus-send,env |
66 | private-dev | 67 | private-dev |
67 | # private-dev might prevent video calls going out | 68 | private-dev |
68 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,cyberfox,mime.types,mailcap,asound.conf,pulse | 69 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,cyberfox,mime.types,mailcap,asound.conf,pulse |
69 | private-tmp | 70 | private-tmp |
70 | 71 | ||
diff --git a/etc/flashpeak-slimjet.profile b/etc/flashpeak-slimjet.profile index feb4087f4..d9be8b9c5 100644 --- a/etc/flashpeak-slimjet.profile +++ b/etc/flashpeak-slimjet.profile | |||
@@ -35,3 +35,5 @@ noroot | |||
35 | notv | 35 | notv |
36 | protocol unix,inet,inet6,netlink | 36 | protocol unix,inet,inet6,netlink |
37 | seccomp | 37 | seccomp |
38 | |||
39 | disable-mnt | ||
diff --git a/etc/google-chrome.profile b/etc/google-chrome.profile index 2e9524e16..19ebfa974 100644 --- a/etc/google-chrome.profile +++ b/etc/google-chrome.profile | |||
@@ -30,6 +30,7 @@ nogroups | |||
30 | notv | 30 | notv |
31 | shell none | 31 | shell none |
32 | 32 | ||
33 | disable-mnt | ||
33 | private-dev | 34 | private-dev |
34 | # private-tmp - problems with multiple browser sessions | 35 | # private-tmp - problems with multiple browser sessions |
35 | 36 | ||
diff --git a/etc/icecat.profile b/etc/icecat.profile index 74c51926a..9e5526c95 100644 --- a/etc/icecat.profile +++ b/etc/icecat.profile | |||
@@ -45,6 +45,7 @@ protocol unix,inet,inet6,netlink | |||
45 | seccomp | 45 | seccomp |
46 | tracelog | 46 | tracelog |
47 | 47 | ||
48 | disable-mnt | ||
48 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse | 49 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse |
49 | 50 | ||
50 | noexec ${HOME} | 51 | noexec ${HOME} |
diff --git a/etc/midori.profile b/etc/midori.profile index 7cb5326fb..831f68864 100644 --- a/etc/midori.profile +++ b/etc/midori.profile | |||
@@ -42,3 +42,5 @@ notv | |||
42 | protocol unix,inet,inet6,netlink | 42 | protocol unix,inet,inet6,netlink |
43 | seccomp | 43 | seccomp |
44 | tracelog | 44 | tracelog |
45 | |||
46 | disable-mnt | ||
diff --git a/etc/netsurf.profile b/etc/netsurf.profile index 02b35757a..6e8f02328 100644 --- a/etc/netsurf.profile +++ b/etc/netsurf.profile | |||
@@ -28,3 +28,5 @@ notv | |||
28 | protocol unix,inet,inet6,netlink | 28 | protocol unix,inet,inet6,netlink |
29 | seccomp | 29 | seccomp |
30 | tracelog | 30 | tracelog |
31 | |||
32 | disable-mnt | ||
diff --git a/etc/opera-beta.profile b/etc/opera-beta.profile index 6079ac7d5..3fe86d26c 100644 --- a/etc/opera-beta.profile +++ b/etc/opera-beta.profile | |||
@@ -24,3 +24,5 @@ include /etc/firejail/whitelist-common.inc | |||
24 | netfilter | 24 | netfilter |
25 | nodvd | 25 | nodvd |
26 | notv | 26 | notv |
27 | |||
28 | disable-mnt | ||
diff --git a/etc/opera.profile b/etc/opera.profile index 2b9b903ac..fed7564b2 100644 --- a/etc/opera.profile +++ b/etc/opera.profile | |||
@@ -28,3 +28,5 @@ include /etc/firejail/whitelist-common.inc | |||
28 | netfilter | 28 | netfilter |
29 | nodvd | 29 | nodvd |
30 | notv | 30 | notv |
31 | |||
32 | disable-mnt | ||
diff --git a/etc/palemoon.profile b/etc/palemoon.profile index 8bdcb7334..1112a9bb7 100644 --- a/etc/palemoon.profile +++ b/etc/palemoon.profile | |||
@@ -56,3 +56,5 @@ tracelog | |||
56 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse | 56 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse |
57 | # private-opt palemoon | 57 | # private-opt palemoon |
58 | private-tmp | 58 | private-tmp |
59 | |||
60 | disable-mnt | ||
diff --git a/etc/seamonkey.profile b/etc/seamonkey.profile index cfd03300a..23072fc0f 100644 --- a/etc/seamonkey.profile +++ b/etc/seamonkey.profile | |||
@@ -45,4 +45,5 @@ protocol unix,inet,inet6,netlink | |||
45 | seccomp | 45 | seccomp |
46 | tracelog | 46 | tracelog |
47 | 47 | ||
48 | disable-mnt | ||
48 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse | 49 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse |
diff --git a/etc/start-tor-browser.profile b/etc/start-tor-browser.profile index 57a5c20e3..a2bf47281 100644 --- a/etc/start-tor-browser.profile +++ b/etc/start-tor-browser.profile | |||
@@ -24,6 +24,7 @@ seccomp | |||
24 | shell none | 24 | shell none |
25 | tracelog | 25 | tracelog |
26 | 26 | ||
27 | disable-mnt | ||
27 | private-bin bash,sh,grep,tail,env,gpg,id,readlink,dirname,test,mkdir,ln,sed,cp,rm,getconf | 28 | private-bin bash,sh,grep,tail,env,gpg,id,readlink,dirname,test,mkdir,ln,sed,cp,rm,getconf |
28 | private-dev | 29 | private-dev |
29 | private-etc fonts | 30 | private-etc fonts |
diff --git a/etc/torbrowser-launcher.profile b/etc/torbrowser-launcher.profile index c2e182cea..81938ca57 100644 --- a/etc/torbrowser-launcher.profile +++ b/etc/torbrowser-launcher.profile | |||
@@ -32,6 +32,7 @@ seccomp | |||
32 | shell none | 32 | shell none |
33 | tracelog | 33 | tracelog |
34 | 34 | ||
35 | disable-mnt | ||
35 | private-bin bash,cp,dirname,env,expr,file,getconf,gpg,grep,id,ln,mkdir,python*,readlink,rm,sed,sh,tail,test,tor-browser-en,torbrowser-launcher | 36 | private-bin bash,cp,dirname,env,expr,file,getconf,gpg,grep,id,ln,mkdir,python*,readlink,rm,sed,sh,tail,test,tor-browser-en,torbrowser-launcher |
36 | private-dev | 37 | private-dev |
37 | private-etc fonts | 38 | private-etc fonts |
diff --git a/etc/vivaldi.profile b/etc/vivaldi.profile index 039c8ed58..3a1f72f23 100644 --- a/etc/vivaldi.profile +++ b/etc/vivaldi.profile | |||
@@ -27,6 +27,7 @@ nogroups | |||
27 | notv | 27 | notv |
28 | shell none | 28 | shell none |
29 | 29 | ||
30 | disable-mnt | ||
30 | private-dev | 31 | private-dev |
31 | # private-tmp - problems with multiple browser sessions | 32 | # private-tmp - problems with multiple browser sessions |
32 | 33 | ||
diff --git a/etc/yandex-browser.profile b/etc/yandex-browser.profile index 605ce3413..1c7769727 100644 --- a/etc/yandex-browser.profile +++ b/etc/yandex-browser.profile | |||
@@ -35,6 +35,7 @@ nogroups | |||
35 | notv | 35 | notv |
36 | shell none | 36 | shell none |
37 | 37 | ||
38 | disable-mnt | ||
38 | private-dev | 39 | private-dev |
39 | # private-tmp - problems with multiple browser sessions | 40 | # private-tmp - problems with multiple browser sessions |
40 | 41 | ||