add back shell=none to firefox-common

after bbaba69f23ae9e181677044b5afb8c29b3eb83b5

3 files changed, 1 insertions, 4 deletions

diff --git a/etc/basilisk.profile b/etc/basilisk.profile
index fe63a59f1..43ba5adcb 100644
--- a/etc/basilisk.profile
+++ b/etc/basilisk.profile
@@ -17,7 +17,6 @@ whitelist ${HOME}/.moonchild productions
 # Basilisk can use the full firejail seccomp filter (unlike firefox >= 60)
 ignore seccomp.drop
 seccomp
-shell none
 
 #private-bin basilisk
 # private-etc must first be enabled in firefox-common.profile
diff --git a/etc/firefox-common.profile b/etc/firefox-common.profile
index 843f41fee..9ebcdba6c 100644
--- a/etc/firefox-common.profile
+++ b/etc/firefox-common.profile
@@ -34,8 +34,7 @@ noroot
 notv
 protocol unix,inet,inet6,netlink
 seccomp.drop @clock,@cpu-emulation,@debug,@module,@obsolete,@raw-io,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice
-# shell none breaks firefox>=60, see issue #1765
-# shell none
+shell none
 tracelog
 
 disable-mnt
diff --git a/etc/palemoon.profile b/etc/palemoon.profile
index c68574df5..1104acff4 100644
--- a/etc/palemoon.profile
+++ b/etc/palemoon.profile
@@ -16,7 +16,6 @@ whitelist ${HOME}/.moonchild productions
 # Palemoon can use the full firejail seccomp filter (unlike firefox >= 60)
 ignore seccomp.drop
 seccomp
-shell none
 
 #private-bin palemoon
 # private-etc must first be enabled in firefox-common.profile