aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar Tad <tad@spotco.us>2018-01-25 13:38:44 -0500
committerLibravatar Tad <tad@spotco.us>2018-01-25 13:38:44 -0500
commitd1f0334ce7d3fc29bee64b50b993a677e1e80f76 (patch)
tree96f596ca88ef133a7f8a278957858e08b39ed0ab /etc
parentapparmor support for --chroot sandboxes (diff)
downloadfirejail-d1f0334ce7d3fc29bee64b50b993a677e1e80f76.tar.gz
firejail-d1f0334ce7d3fc29bee64b50b993a677e1e80f76.tar.zst
firejail-d1f0334ce7d3fc29bee64b50b993a677e1e80f76.zip
Replace xmr-stak-cpu profile with unified xmr-stak profile
Diffstat (limited to 'etc')
-rw-r--r--etc/disable-programs.inc1
-rw-r--r--etc/xmr-stak.profile (renamed from etc/xmr-stak-cpu.profile)18
2 files changed, 11 insertions, 8 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 8cfcaa838..6288f14e2 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -453,6 +453,7 @@ blacklist ${HOME}/.wireshark
453blacklist ${HOME}/.wine64 453blacklist ${HOME}/.wine64
454blacklist ${HOME}/.xiphos 454blacklist ${HOME}/.xiphos
455blacklist ${HOME}/.xmms 455blacklist ${HOME}/.xmms
456blacklist ${HOME}/.xmr-stak
456blacklist ${HOME}/.xonotic 457blacklist ${HOME}/.xonotic
457blacklist ${HOME}/.xpdfrc 458blacklist ${HOME}/.xpdfrc
458blacklist ${HOME}/.zoom 459blacklist ${HOME}/.zoom
diff --git a/etc/xmr-stak-cpu.profile b/etc/xmr-stak.profile
index 9cc6e0c1f..151a4c694 100644
--- a/etc/xmr-stak-cpu.profile
+++ b/etc/xmr-stak.profile
@@ -1,22 +1,24 @@
1# Firejail profile for xmr-stak-cpu 1# Firejail profile for xmr-stak
2# This file is overwritten after every install/update 2# This file is overwritten after every install/update
3# Persistent local customizations 3# Persistent local customizations
4include /etc/firejail/xmr-stak-cpu.local 4include /etc/firejail/xmr-stak.local
5# Persistent global definitions 5# Persistent global definitions
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist ${HOME}/.xmr-stak
9noblacklist /usr/lib/llvm*
8 10
9include /etc/firejail/disable-common.inc 11include /etc/firejail/disable-common.inc
10include /etc/firejail/disable-devel.inc 12include /etc/firejail/disable-devel.inc
11include /etc/firejail/disable-passwdmgr.inc 13include /etc/firejail/disable-passwdmgr.inc
12include /etc/firejail/disable-programs.inc 14include /etc/firejail/disable-programs.inc
13 15
16mkdir ${HOME}/.xmr-stak
14include /etc/firejail/whitelist-var-common.inc 17include /etc/firejail/whitelist-var-common.inc
15 18
16caps.drop all 19caps.drop all
17ipc-namespace 20ipc-namespace
18netfilter 21netfilter
19no3d
20nodvd 22nodvd
21nogroups 23nogroups
22nonewprivs 24nonewprivs
@@ -29,12 +31,12 @@ seccomp
29shell none 31shell none
30 32
31disable-mnt 33disable-mnt
32private 34private ${HOME}/.xmr-stak
33private-bin xmr-stak-cpu 35private-bin xmr-stak
34private-dev 36private-dev
35private-etc xmr-stak-cpu.json 37private-etc ca-certificates,crypto-policies,nsswitch.conf,pki,resolv.conf,ssl
36private-lib 38#private-lib libxmrstak_opencl_backend,libxmrstak_cuda_backend
37private-opt none 39private-opt cuda
38private-tmp 40private-tmp
39 41
40memory-deny-write-execute 42memory-deny-write-execute
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-19 21:15:51 +0000