diff options
author | Tad <tad@spotco.us> | 2018-11-29 02:08:23 -0500 |
---|---|---|
committer | Tad <tad@spotco.us> | 2018-11-29 02:09:04 -0500 |
commit | cc9db57343c3df0a9fc191e31273c955314c8f72 (patch) | |
tree | df2411810cf4e534af6ded52a11222da8ef25831 /etc | |
parent | Merge pull request #2281 from pirate486743186/mpsyt-profile (diff) | |
download | firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.tar.gz firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.tar.zst firejail-cc9db57343c3df0a9fc191e31273c955314c8f72.zip |
merges
Diffstat (limited to 'etc')
-rw-r--r-- | etc/mpsyt.profile | 41 |
1 files changed, 20 insertions, 21 deletions
diff --git a/etc/mpsyt.profile b/etc/mpsyt.profile index eb51a45cc..9fb52c0a8 100644 --- a/etc/mpsyt.profile +++ b/etc/mpsyt.profile | |||
@@ -2,9 +2,17 @@ | |||
2 | # Description: Terminal based YouTube player and downloader | 2 | # Description: Terminal based YouTube player and downloader |
3 | # This file is overwritten after every install/update | 3 | # This file is overwritten after every install/update |
4 | # Persistent local customizations | 4 | # Persistent local customizations |
5 | include /etc/firejail/mpsyt.local | 5 | include mpsyt.local |
6 | # Persistent global definitions | 6 | # Persistent global definitions |
7 | include /etc/firejail/globals.local | 7 | include globals.local |
8 | |||
9 | # Allow python (blacklisted by disable-interpreters.inc) | ||
10 | noblacklist ${PATH}/python2* | ||
11 | noblacklist ${PATH}/python3* | ||
12 | noblacklist /usr/lib/python2* | ||
13 | noblacklist /usr/lib/python3* | ||
14 | noblacklist /usr/local/lib/python2* | ||
15 | noblacklist /usr/local/lib/python3* | ||
8 | 16 | ||
9 | noblacklist ${HOME}/.config/mpv | 17 | noblacklist ${HOME}/.config/mpv |
10 | noblacklist ${HOME}/.mplayer | 18 | noblacklist ${HOME}/.mplayer |
@@ -15,8 +23,14 @@ noblacklist ${MUSIC} | |||
15 | noblacklist ${VIDEOS} | 23 | noblacklist ${VIDEOS} |
16 | noblacklist ${DOWNLOADS} | 24 | noblacklist ${DOWNLOADS} |
17 | 25 | ||
18 | mkdir ${HOME}/.config/mps-youtube | 26 | include disable-common.inc |
27 | include disable-devel.inc | ||
28 | include disable-interpreters.inc | ||
29 | include disable-passwdmgr.inc | ||
30 | include disable-programs.inc | ||
31 | include disable-xdg.inc | ||
19 | 32 | ||
33 | mkdir ${HOME}/.config/mps-youtube | ||
20 | whitelist ${HOME}/.config/mpv | 34 | whitelist ${HOME}/.config/mpv |
21 | whitelist ${HOME}/.mplayer | 35 | whitelist ${HOME}/.mplayer |
22 | whitelist ${HOME}/.config/mps-youtube | 36 | whitelist ${HOME}/.config/mps-youtube |
@@ -25,23 +39,8 @@ whitelist ${HOME}/mps | |||
25 | whitelist ${MUSIC} | 39 | whitelist ${MUSIC} |
26 | whitelist ${VIDEOS} | 40 | whitelist ${VIDEOS} |
27 | whitelist ${DOWNLOADS} | 41 | whitelist ${DOWNLOADS} |
28 | 42 | include whitelist-common.inc | |
29 | # Allow python (blacklisted by disable-interpreters.inc) | 43 | include whitelist-var-common.inc |
30 | noblacklist ${PATH}/python2* | ||
31 | noblacklist ${PATH}/python3* | ||
32 | noblacklist /usr/lib/python2* | ||
33 | noblacklist /usr/lib/python3* | ||
34 | noblacklist /usr/local/lib/python2* | ||
35 | noblacklist /usr/local/lib/python3* | ||
36 | |||
37 | include /etc/firejail/disable-common.inc | ||
38 | include /etc/firejail/disable-devel.inc | ||
39 | include /etc/firejail/disable-interpreters.inc | ||
40 | include /etc/firejail/disable-passwdmgr.inc | ||
41 | include /etc/firejail/disable-programs.inc | ||
42 | include /etc/firejail/disable-xdg.inc | ||
43 | |||
44 | include /etc/firejail/whitelist-var-common.inc | ||
45 | 44 | ||
46 | apparmor | 45 | apparmor |
47 | caps.drop all | 46 | caps.drop all |
@@ -55,7 +54,7 @@ seccomp | |||
55 | shell none | 54 | shell none |
56 | tracelog | 55 | tracelog |
57 | 56 | ||
58 | private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env | 57 | private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env,ffmpeg |
59 | private-dev | 58 | private-dev |
60 | private-tmp | 59 | private-tmp |
61 | 60 | ||