aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar Tad <tad@spotco.us>2021-03-15 14:21:07 -0400
committerLibravatar Tad <tad@spotco.us>2021-03-15 14:24:17 -0400
commitce6925c81058190e233c51e5198cb3a4e61bb42d (patch)
tree9c2377864b118909a5913bb3e5595d57375177e7 /etc
parentHarden PPSSPP and add a PPSSPPSDL alias (diff)
downloadfirejail-ce6925c81058190e233c51e5198cb3a4e61bb42d.tar.gz
firejail-ce6925c81058190e233c51e5198cb3a4e61bb42d.tar.zst
firejail-ce6925c81058190e233c51e5198cb3a4e61bb42d.zip
Add a profile for Jami
Left out of firecfg because I think it was buggy.
Diffstat (limited to 'etc')
-rw-r--r--etc/inc/disable-programs.inc2
-rw-r--r--etc/profile-a-l/jami-gnome.profile42
2 files changed, 44 insertions, 0 deletions
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc
index 7a37c9fb4..27f6a938b 100644
--- a/etc/inc/disable-programs.inc
+++ b/etc/inc/disable-programs.inc
@@ -267,6 +267,7 @@ blacklist ${HOME}/.config/inkscape
267blacklist ${HOME}/.config/inox 267blacklist ${HOME}/.config/inox
268blacklist ${HOME}/.config/iridium 268blacklist ${HOME}/.config/iridium
269blacklist ${HOME}/.config/itch 269blacklist ${HOME}/.config/itch
270blacklist ${HOME}/.config/jami
270blacklist ${HOME}/.config/jd-gui.cfg 271blacklist ${HOME}/.config/jd-gui.cfg
271blacklist ${HOME}/.config/k3brc 272blacklist ${HOME}/.config/k3brc
272blacklist ${HOME}/.config/kaffeinerc 273blacklist ${HOME}/.config/kaffeinerc
@@ -662,6 +663,7 @@ blacklist ${HOME}/.local/share/gradio
662blacklist ${HOME}/.local/share/gwenview 663blacklist ${HOME}/.local/share/gwenview
663blacklist ${HOME}/.local/share/i2p 664blacklist ${HOME}/.local/share/i2p
664blacklist ${HOME}/.local/share/IntoTheBreach 665blacklist ${HOME}/.local/share/IntoTheBreach
666blacklist ${HOME}/.local/share/jami
665blacklist ${HOME}/.local/share/kaffeine 667blacklist ${HOME}/.local/share/kaffeine
666blacklist ${HOME}/.local/share/kalgebra 668blacklist ${HOME}/.local/share/kalgebra
667blacklist ${HOME}/.local/share/kate 669blacklist ${HOME}/.local/share/kate
diff --git a/etc/profile-a-l/jami-gnome.profile b/etc/profile-a-l/jami-gnome.profile
new file mode 100644
index 000000000..226bb0008
--- /dev/null
+++ b/etc/profile-a-l/jami-gnome.profile
@@ -0,0 +1,42 @@
1# Firejail profile for jami-gnome
2# Description: An encrypted peer-to-peer messenger
3# This file is overwritten after every install/update
4# Persistent local customizations
5include jami-gnome.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.config/jami
10noblacklist ${HOME}/.local/share/jami
11
12include disable-common.inc
13include disable-devel.inc
14include disable-exec.inc
15#include disable-interpreters.inc
16include disable-passwdmgr.inc
17include disable-programs.inc
18
19mkdir ${HOME}/.config/jami
20mkdir ${HOME}/.local/share/jami
21whitelist ${HOME}/.config/jami
22whitelist ${HOME}/.local/share/jami
23include whitelist-common.inc
24include whitelist-var-common.inc
25
26caps.drop all
27ipc-namespace
28netfilter
29nodvd
30nogroups
31nonewprivs
32noroot
33notv
34protocol unix,inet,inet6,netlink
35seccomp
36shell none
37
38disable-mnt
39private-dev
40private-tmp
41
42env QT_QPA_PLATFORM=xcb
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-04 02:42:25 +0000