diff options
author | netblue30 <netblue30@yahoo.com> | 2016-08-17 08:26:43 -0400 |
---|---|---|
committer | GitHub <noreply@github.com> | 2016-08-17 08:26:43 -0400 |
commit | 75849664c84b4b6493bbfa32d7f143aa8982c2c8 (patch) | |
tree | c4bd40daf135c8a72d174c4ecaeca44e186a427d /etc | |
parent | Merge pull request #724 from greigdp/contrib/fix-spotify (diff) | |
parent | Add profile support for Slack (diff) | |
download | firejail-75849664c84b4b6493bbfa32d7f143aa8982c2c8.tar.gz firejail-75849664c84b4b6493bbfa32d7f143aa8982c2c8.tar.zst firejail-75849664c84b4b6493bbfa32d7f143aa8982c2c8.zip |
Merge pull request #723 from greigdp/contrib/slack
Add profile support for Slack
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/slack.profile | 27 |
2 files changed, 28 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 140417b01..c94bcc9f4 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -78,6 +78,7 @@ blacklist ${HOME}/.TelegramDesktop | |||
78 | blacklist ${HOME}/.config/Gitter | 78 | blacklist ${HOME}/.config/Gitter |
79 | blacklist ${HOME}/.config/Franz | 79 | blacklist ${HOME}/.config/Franz |
80 | blacklist ${HOME}/.jitsi | 80 | blacklist ${HOME}/.jitsi |
81 | blacklist ${HOME}/.config/Slack | ||
81 | 82 | ||
82 | # Games | 83 | # Games |
83 | blacklist ${HOME}/.hedgewars | 84 | blacklist ${HOME}/.hedgewars |
diff --git a/etc/slack.profile b/etc/slack.profile new file mode 100644 index 000000000..ea7b715f9 --- /dev/null +++ b/etc/slack.profile | |||
@@ -0,0 +1,27 @@ | |||
1 | include /etc/firejail/disable-common.inc | ||
2 | include /etc/firejail/disable-programs.inc | ||
3 | include /etc/firejail/disable-devel.inc | ||
4 | include /etc/firejail/disable-passwdmgr.inc | ||
5 | |||
6 | mkdir ${HOME}/.config | ||
7 | mkdir ${HOME}/.config/Slack | ||
8 | whitelist ${HOME}/.config/Slack | ||
9 | whitelist ~/Downloads | ||
10 | |||
11 | protocol unix,inet,inet6,netlink | ||
12 | private-dev | ||
13 | private-tmp | ||
14 | private-etc fonts,resolv.conf,ld.so.conf,ld.so.cache,localtime | ||
15 | name slack | ||
16 | blacklist /var | ||
17 | |||
18 | include /etc/firejail/whitelist-common.inc | ||
19 | |||
20 | caps.drop all | ||
21 | seccomp | ||
22 | netfilter | ||
23 | nonewprivs | ||
24 | nogroups | ||
25 | noroot | ||
26 | shell none | ||
27 | private-bin slack | ||