diff options
author | netblue30 <netblue30@yahoo.com> | 2015-08-27 12:37:57 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2015-08-27 12:37:57 -0400 |
commit | 746b6aa3b8bd5f8482078925901f09ed0f45c0b3 (patch) | |
tree | 51af66cf8652bdb895aa9346bd085ce95741e226 /etc | |
parent | Merge pull request #46 from iiotx/master (diff) | |
download | firejail-746b6aa3b8bd5f8482078925901f09ed0f45c0b3.tar.gz firejail-746b6aa3b8bd5f8482078925901f09ed0f45c0b3.tar.zst firejail-746b6aa3b8bd5f8482078925901f09ed0f45c0b3.zip |
testing
Diffstat (limited to 'etc')
-rw-r--r-- | etc/generic.profile | 38 |
1 files changed, 5 insertions, 33 deletions
diff --git a/etc/generic.profile b/etc/generic.profile index 83bf59e0a..f1c6af30d 100644 --- a/etc/generic.profile +++ b/etc/generic.profile | |||
@@ -1,38 +1,10 @@ | |||
1 | ################################ | 1 | ################################ |
2 | # Generic profile based on Firefox profile | 2 | # Generic GUI application profile |
3 | ################################ | 3 | ################################ |
4 | #include /etc/firejail/disable-mgmt.inc | 4 | include /etc/firejail/disable-mgmt.inc |
5 | # system directories | 5 | include /etc/firejail/disable-secret.inc |
6 | blacklist /sbin | 6 | include /etc/firejail/disable-common.inc |
7 | blacklist /usr/sbin | 7 | include /etc/firejail/disable-history.inc |
8 | # system management | ||
9 | blacklist ${PATH}/umount | ||
10 | blacklist ${PATH}/mount | ||
11 | blacklist ${PATH}/fusermount | ||
12 | blacklist ${PATH}/su | ||
13 | blacklist ${PATH}/sudo | ||
14 | blacklist ${PATH}/xinput | ||
15 | blacklist ${PATH}/strace | ||
16 | |||
17 | #include /etc/firejail/disable-secret.inc | ||
18 | # HOME directory | ||
19 | blacklist ${HOME}/.ssh | ||
20 | tmpfs ${HOME}/.gnome2_private | ||
21 | blacklist ${HOME}/.gnome2/keyrings | ||
22 | blacklist ${HOME}/kde4/share/apps/kwallet | ||
23 | blacklist ${HOME}/kde/share/apps/kwallet | ||
24 | blacklist ${HOME}/.pki/nssdb | ||
25 | blacklist ${HOME}/.gnupg | ||
26 | blacklist ${HOME}/.local/share/recently-used.xbel | ||
27 | |||
28 | blacklist ${HOME}/.adobe | ||
29 | blacklist ${HOME}/.macromedia | ||
30 | blacklist ${HOME}/.mozilla | ||
31 | blacklist ${HOME}/.icedove | ||
32 | blacklist ${HOME}/.thunderbird | ||
33 | blacklist ${HOME}/.config/opera | ||
34 | blacklist ${HOME}/.config/chromium | ||
35 | blacklist ${HOME}/.config/google-chrome | ||
36 | 8 | ||
37 | caps.drop all | 9 | caps.drop all |
38 | seccomp | 10 | seccomp |