aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar netblue30 <netblue30@yahoo.com>2017-04-25 12:00:07 -0400
committerLibravatar netblue30 <netblue30@yahoo.com>2017-04-25 12:00:07 -0400
commit4d32f53c721c4040232c9a5dcf67cfdef8c6e4a4 (patch)
tree699f06181e98d29da2decd679ae9fe01d3c2f9df /etc
parentfiremon --top fix (diff)
downloadfirejail-4d32f53c721c4040232c9a5dcf67cfdef8c6e4a4.tar.gz
firejail-4d32f53c721c4040232c9a5dcf67cfdef8c6e4a4.tar.zst
firejail-4d32f53c721c4040232c9a5dcf67cfdef8c6e4a4.zip
added Orage Globaltime, Orage Clendar, xfce4-notes, xfce4-dict and Ristretto profiles
Diffstat (limited to 'etc')
-rw-r--r--etc/disable-programs.inc8
-rw-r--r--etc/globaltime.profile26
-rw-r--r--etc/orage.profile27
-rw-r--r--etc/ristretto.profile26
-rw-r--r--etc/xfce4-dict.profile26
-rw-r--r--etc/xfce4-notes.profile28
6 files changed, 141 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index fbe614b0d..9b84f5e8a 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -76,6 +76,7 @@ blacklist ${HOME}/.config/flowblade
76blacklist ${HOME}/.config/gajim 76blacklist ${HOME}/.config/gajim
77blacklist ${HOME}/.config/geeqie 77blacklist ${HOME}/.config/geeqie
78blacklist ${HOME}/.config/gedit 78blacklist ${HOME}/.config/gedit
79blacklist ${HOME}/.config/globaltime
79blacklist ${HOME}/.config/google-chrome 80blacklist ${HOME}/.config/google-chrome
80blacklist ${HOME}/.config/google-chrome-beta 81blacklist ${HOME}/.config/google-chrome-beta
81blacklist ${HOME}/.config/google-chrome-unstable 82blacklist ${HOME}/.config/google-chrome-unstable
@@ -104,10 +105,12 @@ blacklist ${HOME}/.config/okularpartrc
104blacklist ${HOME}/.config/okularrc 105blacklist ${HOME}/.config/okularrc
105blacklist ${HOME}/.config/opera 106blacklist ${HOME}/.config/opera
106blacklist ${HOME}/.config/opera-beta 107blacklist ${HOME}/.config/opera-beta
108blacklist ${HOME}/.config/orage
107blacklist ${HOME}/.config/org.kde.gwenviewrc 109blacklist ${HOME}/.config/org.kde.gwenviewrc
108blacklist ${HOME}/.config/pix 110blacklist ${HOME}/.config/pix
109blacklist ${HOME}/.config/pluma 111blacklist ${HOME}/.config/pluma
110blacklist ${HOME}/.config/psi+ 112blacklist ${HOME}/.config/psi+
113blacklist ${HOME}/.config/ristretto
111blacklist ${HOME}/.config/qpdfview 114blacklist ${HOME}/.config/qpdfview
112blacklist ${HOME}/.config/qt5ct 115blacklist ${HOME}/.config/qt5ct
113blacklist ${HOME}/.config/qutebrowser 116blacklist ${HOME}/.config/qutebrowser
@@ -135,6 +138,9 @@ blacklist ${HOME}/.config/xchat
135blacklist ${HOME}/.config/xed 138blacklist ${HOME}/.config/xed
136blacklist ${HOME}/.config/xfburn 139blacklist ${HOME}/.config/xfburn
137blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml 140blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml
141blacklist ${HOME}/.config/xfce4/xfce4-notes.rc
142blacklist ${HOME}/.config/xfce4/xfce4-notes.gtkrc
143blacklist ${HOME}/.config/xfce4-dict
138blacklist ${HOME}/.config/xplayer 144blacklist ${HOME}/.config/xplayer
139blacklist ${HOME}/.config/xreader 145blacklist ${HOME}/.config/xreader
140blacklist ${HOME}/.config/xviewer 146blacklist ${HOME}/.config/xviewer
@@ -242,6 +248,7 @@ blacklist ${HOME}/.local/share/mupen64plus
242blacklist ${HOME}/.local/share/nautilus 248blacklist ${HOME}/.local/share/nautilus
243blacklist ${HOME}/.local/share/nemo 249blacklist ${HOME}/.local/share/nemo
244blacklist ${HOME}/.local/share/okular 250blacklist ${HOME}/.local/share/okular
251blacklist ${HOME}/.local/share/orage
245blacklist ${HOME}/.local/share/org.kde.gwenview 252blacklist ${HOME}/.local/share/org.kde.gwenview
246blacklist ${HOME}/.local/share/pix 253blacklist ${HOME}/.local/share/pix
247blacklist ${HOME}/.local/share/psi+ 254blacklist ${HOME}/.local/share/psi+
@@ -256,6 +263,7 @@ blacklist ${HOME}/.local/share/vpltd
256blacklist ${HOME}/.local/share/vulkan 263blacklist ${HOME}/.local/share/vulkan
257blacklist ${HOME}/.local/share/wesnoth 264blacklist ${HOME}/.local/share/wesnoth
258blacklist ${HOME}/.local/share/xplayer 265blacklist ${HOME}/.local/share/xplayer
266blacklist ${HOME}/.local/share/notes
259blacklist ${HOME}/.local/share/xreader 267blacklist ${HOME}/.local/share/xreader
260blacklist ${HOME}/.local/share/zathura 268blacklist ${HOME}/.local/share/zathura
261blacklist ${HOME}/.lv2 269blacklist ${HOME}/.lv2
diff --git a/etc/globaltime.profile b/etc/globaltime.profile
new file mode 100644
index 000000000..271c331a9
--- /dev/null
+++ b/etc/globaltime.profile
@@ -0,0 +1,26 @@
1# This file is overwritten during software install.
2# Persistent customizations should go in a .local file.
3include /etc/firejail/globaltime.local
4
5noblacklist ${HOME}/.config/globaltime
6include /etc/firejail/disable-common.inc
7include /etc/firejail/disable-programs.inc
8include /etc/firejail/disable-passwdmgr.inc
9
10caps.drop all
11netfilter
12nonewprivs
13noroot
14protocol unix,inet,inet6
15seccomp
16
17#
18# depending on you usage, you can enable some of the commands below:
19#
20nogroups
21shell none
22# private-bin program
23# private-etc none
24private-dev
25# private-tmp
26
diff --git a/etc/orage.profile b/etc/orage.profile
new file mode 100644
index 000000000..b0bd8b9c3
--- /dev/null
+++ b/etc/orage.profile
@@ -0,0 +1,27 @@
1# This file is overwritten during software install.
2# Persistent customizations should go in a .local file.
3include /etc/firejail/orage.local
4
5noblacklist ${HOME}/.config/orage
6noblacklist ${HOME}/.local/share/orage
7include /etc/firejail/disable-common.inc
8include /etc/firejail/disable-programs.inc
9include /etc/firejail/disable-passwdmgr.inc
10
11caps.drop all
12netfilter
13nonewprivs
14noroot
15protocol unix,inet,inet6
16seccomp
17
18#
19# depending on you usage, you can enable some of the commands below:
20#
21nogroups
22shell none
23# private-bin program
24# private-etc none
25private-dev
26# private-tmp
27
diff --git a/etc/ristretto.profile b/etc/ristretto.profile
new file mode 100644
index 000000000..9499febe1
--- /dev/null
+++ b/etc/ristretto.profile
@@ -0,0 +1,26 @@
1# This file is overwritten during software install.
2# Persistent customizations should go in a .local file.
3include /etc/firejail/risretto.local
4
5noblacklist ${HOME}/.config/ristretto
6include /etc/firejail/disable-common.inc
7include /etc/firejail/disable-programs.inc
8include /etc/firejail/disable-passwdmgr.inc
9
10caps.drop all
11netfilter
12nonewprivs
13noroot
14protocol unix,inet,inet6
15seccomp
16
17#
18# depending on you usage, you can enable some of the commands below:
19#
20nogroups
21shell none
22# private-bin program
23# private-etc none
24private-dev
25# private-tmp
26
diff --git a/etc/xfce4-dict.profile b/etc/xfce4-dict.profile
new file mode 100644
index 000000000..41544e6b9
--- /dev/null
+++ b/etc/xfce4-dict.profile
@@ -0,0 +1,26 @@
1# This file is overwritten during software install.
2# Persistent customizations should go in a .local file.
3include /etc/firejail/xfce4-dict.local
4
5noblacklist ${HOME}/.config/xfce4-dict
6include /etc/firejail/disable-common.inc
7include /etc/firejail/disable-programs.inc
8include /etc/firejail/disable-passwdmgr.inc
9
10caps.drop all
11netfilter
12nonewprivs
13noroot
14protocol unix,inet,inet6
15seccomp
16
17#
18# depending on you usage, you can enable some of the commands below:
19#
20nogroups
21shell none
22# private-bin program
23# private-etc none
24private-dev
25# private-tmp
26
diff --git a/etc/xfce4-notes.profile b/etc/xfce4-notes.profile
new file mode 100644
index 000000000..f2cb9a5f1
--- /dev/null
+++ b/etc/xfce4-notes.profile
@@ -0,0 +1,28 @@
1# This file is overwritten during software install.
2# Persistent customizations should go in a .local file.
3include /etc/firejail/xfce4-notes.local
4
5noblacklist ${HOME}/.config/xfce4/xfce4-notes.rc
6noblacklist ${HOME}/.config/xfce4/xfce4-notes.gtkrc
7noblacklist ${HOME}/.local/share/notes
8include /etc/firejail/disable-common.inc
9include /etc/firejail/disable-programs.inc
10include /etc/firejail/disable-passwdmgr.inc
11
12caps.drop all
13netfilter
14nonewprivs
15noroot
16protocol unix,inet,inet6
17seccomp
18
19#
20# depending on you usage, you can enable some of the commands below:
21#
22nogroups
23shell none
24# private-bin program
25# private-etc none
26private-dev
27# private-tmp
28
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-19 09:58:11 +0000