aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar Tad <tad@spotco.us>2018-03-12 17:48:53 -0400
committerLibravatar Tad <tad@spotco.us>2018-03-12 17:48:53 -0400
commit27f32e45d24635a32e219babec276139042bed4e (patch)
tree277e814a5afaed14ecf7f44fc3f4dec702baa28f /etc
parentMerge branch 'master' of http://github.com/netblue30/firejail (diff)
downloadfirejail-27f32e45d24635a32e219babec276139042bed4e.tar.gz
firejail-27f32e45d24635a32e219babec276139042bed4e.tar.zst
firejail-27f32e45d24635a32e219babec276139042bed4e.zip
More fixes for /etc/profile and mdwe
- Adds noblacklist /etc/profile.d to many profiles like 2e17082ba4b3399bf5d68bb75587934ea028cc5c and 970f739e2be202a39ab82f589d5773267b903de6 - Disables mdwe to workaround #1803 like 970f739e2be202a39ab82f589d5773267b903de6
Diffstat (limited to 'etc')
-rw-r--r--etc/aosp.profile1
-rw-r--r--etc/atom.profile1
-rw-r--r--etc/baobab.profile2
-rw-r--r--etc/file-roller.profile2
-rw-r--r--etc/gedit.profile1
-rw-r--r--etc/gnome-builder.profile2
-rw-r--r--etc/gnome-calculator.profile2
-rw-r--r--etc/idea.sh.profile1
-rw-r--r--etc/pycharm-community.profile1
9 files changed, 10 insertions, 3 deletions
diff --git a/etc/aosp.profile b/etc/aosp.profile
index 5ceef9348..015f0967d 100644
--- a/etc/aosp.profile
+++ b/etc/aosp.profile
@@ -6,6 +6,7 @@ include /etc/firejail/aosp.local
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8 8
9noblacklist /etc/profile.d
9noblacklist ${HOME}/.android 10noblacklist ${HOME}/.android
10noblacklist ${HOME}/.bash_history 11noblacklist ${HOME}/.bash_history
11noblacklist ${HOME}/.gitconfig 12noblacklist ${HOME}/.gitconfig
diff --git a/etc/atom.profile b/etc/atom.profile
index de09275cc..ec8e0e900 100644
--- a/etc/atom.profile
+++ b/etc/atom.profile
@@ -7,6 +7,7 @@ include /etc/firejail/globals.local
7 7
8# blacklist /run/user/*/bus 8# blacklist /run/user/*/bus
9 9
10noblacklist /etc/profile.d
10noblacklist ${HOME}/.atom 11noblacklist ${HOME}/.atom
11noblacklist ${HOME}/.config/Atom 12noblacklist ${HOME}/.config/Atom
12 13
diff --git a/etc/baobab.profile b/etc/baobab.profile
index 52f8af82e..e47e31bb1 100644
--- a/etc/baobab.profile
+++ b/etc/baobab.profile
@@ -30,6 +30,6 @@ private-bin baobab
30private-dev 30private-dev
31private-tmp 31private-tmp
32 32
33memory-deny-write-execute 33#memory-deny-write-execute - breaks on Arch
34noexec ${HOME} 34noexec ${HOME}
35noexec /tmp 35noexec /tmp
diff --git a/etc/file-roller.profile b/etc/file-roller.profile
index 98b7aad42..bc4e70da4 100644
--- a/etc/file-roller.profile
+++ b/etc/file-roller.profile
@@ -34,6 +34,6 @@ private-dev
34# private-etc fonts 34# private-etc fonts
35# private-tmp 35# private-tmp
36 36
37memory-deny-write-execute 37#memory-deny-write-execute - breaks on Arch
38noexec ${HOME} 38noexec ${HOME}
39noexec /tmp 39noexec /tmp
diff --git a/etc/gedit.profile b/etc/gedit.profile
index 97eb692de..87f89b6be 100644
--- a/etc/gedit.profile
+++ b/etc/gedit.profile
@@ -7,6 +7,7 @@ include /etc/firejail/globals.local
7 7
8# blacklist /run/user/*/bus - makes settings immutable 8# blacklist /run/user/*/bus - makes settings immutable
9 9
10noblacklist /etc/profile.d
10noblacklist ${HOME}/.config/enchant 11noblacklist ${HOME}/.config/enchant
11noblacklist ${HOME}/.config/gedit 12noblacklist ${HOME}/.config/gedit
12noblacklist ${HOME}/.gitconfig 13noblacklist ${HOME}/.gitconfig
diff --git a/etc/gnome-builder.profile b/etc/gnome-builder.profile
index a5a48e97a..91e84f9e9 100644
--- a/etc/gnome-builder.profile
+++ b/etc/gnome-builder.profile
@@ -5,6 +5,8 @@ include /etc/firejail/gnome-builder.local
5# Persistent global definitions 5# Persistent global definitions
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist /etc/profile.d
9
8include /etc/firejail/disable-common.inc 10include /etc/firejail/disable-common.inc
9include /etc/firejail/disable-passwdmgr.inc 11include /etc/firejail/disable-passwdmgr.inc
10include /etc/firejail/disable-programs.inc 12include /etc/firejail/disable-programs.inc
diff --git a/etc/gnome-calculator.profile b/etc/gnome-calculator.profile
index ce3cb03b4..03e68a5cc 100644
--- a/etc/gnome-calculator.profile
+++ b/etc/gnome-calculator.profile
@@ -34,6 +34,6 @@ private-dev
34private-lib 34private-lib
35private-tmp 35private-tmp
36 36
37memory-deny-write-execute 37#memory-deny-write-execute - breaks on Arch
38noexec ${HOME} 38noexec ${HOME}
39noexec /tmp 39noexec /tmp
diff --git a/etc/idea.sh.profile b/etc/idea.sh.profile
index caec416e9..52afe8eb0 100644
--- a/etc/idea.sh.profile
+++ b/etc/idea.sh.profile
@@ -5,6 +5,7 @@ include /etc/firejail/idea.sh.local
5# Persistent global definitions 5# Persistent global definitions
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist /etc/profile.d
8noblacklist ${HOME}/.IdeaIC* 9noblacklist ${HOME}/.IdeaIC*
9noblacklist ${HOME}/.android 10noblacklist ${HOME}/.android
10noblacklist ${HOME}/.gitconfig 11noblacklist ${HOME}/.gitconfig
diff --git a/etc/pycharm-community.profile b/etc/pycharm-community.profile
index b5e508d06..65dd3e69e 100644
--- a/etc/pycharm-community.profile
+++ b/etc/pycharm-community.profile
@@ -5,6 +5,7 @@ include /etc/firejail/pycharm-community.local
5# Persistent global definitions 5# Persistent global definitions
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist /etc/profile.d
8noblacklist ${HOME}/snap 9noblacklist ${HOME}/snap
9noblacklist ${HOME}/.PyCharmCE* 10noblacklist ${HOME}/.PyCharmCE*
10noblacklist ${HOME}/.java 11noblacklist ${HOME}/.java
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-08 21:29:30 +0000