aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar Fred Barclay <Fred-Barclay@users.noreply.github.com>2019-06-26 21:59:01 -0500
committerLibravatar Fred Barclay <Fred-Barclay@users.noreply.github.com>2019-06-26 21:59:01 -0500
commit5bad67a48618ad8039ba93291948f0e2cf8808c6 (patch)
treebabcb1b36283eac7b79d6149a090b21021a57ad5 /etc
parentHardening a few profiles (#2800) (diff)
downloadfirejail-5bad67a48618ad8039ba93291948f0e2cf8808c6.tar.gz
firejail-5bad67a48618ad8039ba93291948f0e2cf8808c6.tar.zst
firejail-5bad67a48618ad8039ba93291948f0e2cf8808c6.zip
Add profile for jerry chess
Diffstat (limited to 'etc')
-rw-r--r--etc/disable-programs.inc1
-rw-r--r--etc/jerry.profile41
2 files changed, 42 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index fb7e02d0b..679a8c0a0 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -151,6 +151,7 @@ blacklist ${HOME}/.config/digikam
151blacklist ${HOME}/.config/digikamrc 151blacklist ${HOME}/.config/digikamrc
152blacklist ${HOME}/.config/discord 152blacklist ${HOME}/.config/discord
153blacklist ${HOME}/.config/discordcanary 153blacklist ${HOME}/.config/discordcanary
154blacklist ${HOME}/.config/dkl
154blacklist ${HOME}/.config/dnox 155blacklist ${HOME}/.config/dnox
155blacklist ${HOME}/.config/dolphinrc 156blacklist ${HOME}/.config/dolphinrc
156blacklist ${HOME}/.config/dragonplayerrc 157blacklist ${HOME}/.config/dragonplayerrc
diff --git a/etc/jerry.profile b/etc/jerry.profile
new file mode 100644
index 000000000..28eb4d207
--- /dev/null
+++ b/etc/jerry.profile
@@ -0,0 +1,41 @@
1# Firejail profile for jerry
2# Description: Chess GUI
3# This file is overwritten after every install/update
4# Persistent local customizations
5include jerry.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.config/dkl
10
11include disable-common.inc
12include disable-devel.inc
13include disable-exec.inc
14include disable-interpreters.inc
15include disable-passwdmgr.inc
16include disable-programs.inc
17include disable-xdg.inc
18
19caps.drop all
20machine-id
21net none
22no3d
23nodbus
24nodvd
25nogroups
26nonewprivs
27noroot
28nosound
29notv
30novideo
31protocol unix
32seccomp
33shell none
34tracelog
35
36private-bin jerry,stockfish,sh,bash
37private-dev
38private-etc fonts,gtk-2.0,gtk-3.0
39private-tmp
40
41memory-deny-write-execute
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-01 12:03:55 +0000