diff options
author | netblue30 <netblue30@yahoo.com> | 2016-10-12 16:20:18 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-10-12 16:20:18 -0400 |
commit | a2fb272b3e03d9fe60e35ab21c613897f5b67c67 (patch) | |
tree | 45e19585936b0919ca3ac7dcf0b99ac32e953afb /etc | |
parent | Merge pull request #857 from DeelveshBunjun/master (diff) | |
download | firejail-a2fb272b3e03d9fe60e35ab21c613897f5b67c67.tar.gz firejail-a2fb272b3e03d9fe60e35ab21c613897f5b67c67.tar.zst firejail-a2fb272b3e03d9fe60e35ab21c613897f5b67c67.zip |
xpdf profile
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/xpdf.profile | 16 |
2 files changed, 7 insertions, 10 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 126ebea80..369e4813c 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -34,6 +34,7 @@ blacklist ${HOME}/.inkscape | |||
34 | blacklist ${HOME}/.gimp* | 34 | blacklist ${HOME}/.gimp* |
35 | blacklist ${HOME}/.config/zathura | 35 | blacklist ${HOME}/.config/zathura |
36 | blacklist ${HOME}/.config/cherrytree | 36 | blacklist ${HOME}/.config/cherrytree |
37 | blacklist ${HOME}/.xpdfrc | ||
37 | 38 | ||
38 | 39 | ||
39 | # Media players | 40 | # Media players |
diff --git a/etc/xpdf.profile b/etc/xpdf.profile index e4e1a8ec2..e036fba21 100644 --- a/etc/xpdf.profile +++ b/etc/xpdf.profile | |||
@@ -1,25 +1,21 @@ | |||
1 | ################################ | 1 | ################################ |
2 | # xpdf application profile | 2 | # xpdf application profile |
3 | ################################ | 3 | ################################ |
4 | #include /etc/firejail/disable-common.inc | 4 | noblacklist ${HOME}/.xpdfrc |
5 | #include /etc/firejail/disable-programs.inc | 5 | include /etc/firejail/disable-common.inc |
6 | #include /etc/firejail/disable-passwdmgr.inc | 6 | include /etc/firejail/disable-programs.inc |
7 | include /etc/firejail/disable-passwdmgr.inc | ||
7 | 8 | ||
8 | caps.drop all | 9 | caps.drop all |
9 | shell none | 10 | shell none |
10 | |||
11 | nonewprivs | 11 | nonewprivs |
12 | noroot | 12 | noroot |
13 | protocol unix | 13 | protocol unix |
14 | seccomp | 14 | seccomp |
15 | |||
16 | |||
17 | noblacklist /etc/xpdfrc | ||
18 | noblacklist ${HOME}/.xpdfrc | ||
19 | |||
20 | |||
21 | private-dev | 15 | private-dev |
22 | private-tmp | 16 | private-tmp |
17 | net none | ||
18 | |||
23 | 19 | ||
24 | 20 | ||
25 | 21 | ||