aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar Fred Barclay <Fred-Barclay@users.noreply.github.com>2016-12-14 22:40:08 -0600
committerLibravatar Fred Barclay <Fred-Barclay@users.noreply.github.com>2016-12-14 22:40:08 -0600
commitd753ab6bf7c5e90633781a6c75046284c772d9d8 (patch)
tree94dcb15b369396f5cb587b9a4118461b5aefaa79 /etc
parentadded a 1 second delay after xpra server is started (diff)
downloadfirejail-d753ab6bf7c5e90633781a6c75046284c772d9d8.tar.gz
firejail-d753ab6bf7c5e90633781a6c75046284c772d9d8.tar.zst
firejail-d753ab6bf7c5e90633781a6c75046284c772d9d8.zip
Add keepassx2 profile
Diffstat (limited to 'etc')
-rw-r--r--etc/disable-common.inc28
-rw-r--r--etc/disable-programs.inc4
-rw-r--r--etc/keepassx2.profile22
3 files changed, 38 insertions, 16 deletions
diff --git a/etc/disable-common.inc b/etc/disable-common.inc
index b86c6f998..07814a704 100644
--- a/etc/disable-common.inc
+++ b/etc/disable-common.inc
@@ -39,19 +39,19 @@ blacklist /usr/share/applications/veracrypt.*
39blacklist /usr/share/pixmaps/veracrypt.* 39blacklist /usr/share/pixmaps/veracrypt.*
40blacklist ${HOME}/.VeraCrypt 40blacklist ${HOME}/.VeraCrypt
41 41
42# TrueCrypt 42# TrueCrypt
43blacklist ${PATH}/truecrypt 43blacklist ${PATH}/truecrypt
44blacklist ${PATH}/truecrypt-uninstall.sh 44blacklist ${PATH}/truecrypt-uninstall.sh
45blacklist /usr/share/truecrypt 45blacklist /usr/share/truecrypt
46blacklist /usr/share/applications/truecrypt.* 46blacklist /usr/share/applications/truecrypt.*
47blacklist /usr/share/pixmaps/truecrypt.* 47blacklist /usr/share/pixmaps/truecrypt.*
48blacklist ${HOME}/.TrueCrypt 48blacklist ${HOME}/.TrueCrypt
49 49
50# zuluCrypt 50# zuluCrypt
51blacklist ${HOME}/.zuluCrypt 51blacklist ${HOME}/.zuluCrypt
52blacklist ${HOME}/.zuluCrypt-socket 52blacklist ${HOME}/.zuluCrypt-socket
53blacklist ${PATH}/zuluCrypt-cli 53blacklist ${PATH}/zuluCrypt-cli
54blacklist ${PATH}/zuluMount-cli 54blacklist ${PATH}/zuluMount-cli
55 55
56# var 56# var
57blacklist /var/spool/cron 57blacklist /var/spool/cron
@@ -154,7 +154,7 @@ blacklist /etc/ssh
154blacklist /var/backup 154blacklist /var/backup
155blacklist /home/.ecryptfs 155blacklist /home/.ecryptfs
156 156
157# system directories 157# system directories
158blacklist /sbin 158blacklist /sbin
159blacklist /usr/sbin 159blacklist /usr/sbin
160blacklist /usr/local/sbin 160blacklist /usr/local/sbin
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index a9ca487c5..8e9392c7b 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -107,7 +107,7 @@ blacklist ${HOME}/.config/katepartrc
107blacklist ${HOME}/.config/katerc 107blacklist ${HOME}/.config/katerc
108blacklist ${HOME}/.config/kateschemarc 108blacklist ${HOME}/.config/kateschemarc
109blacklist ${HOME}/.config/katesyntaxhighlightingrc 109blacklist ${HOME}/.config/katesyntaxhighlightingrc
110blacklist ${HOME}/.config/katevirc 110blacklist ${HOME}/.config/katevir
111blacklist ${HOME}/.config/libreoffice 111blacklist ${HOME}/.config/libreoffice
112blacklist ${HOME}/.config/mate/eom 112blacklist ${HOME}/.config/mate/eom
113blacklist ${HOME}/.config/midori 113blacklist ${HOME}/.config/midori
@@ -148,7 +148,7 @@ blacklist ${HOME}/.config/xreader
148blacklist ${HOME}/.config/xviewer 148blacklist ${HOME}/.config/xviewer
149blacklist ${HOME}/.config/zathura 149blacklist ${HOME}/.config/zathura
150blacklist ${HOME}/.config/zoomus.conf 150blacklist ${HOME}/.config/zoomus.conf
151blacklist ${HOME}/.conkeror.mozdev.org 151blacklist ${HOME}/.conkeror.mozdev.org
152blacklist ${HOME}/.dillo 152blacklist ${HOME}/.dillo
153blacklist ${HOME}/.dosbox 153blacklist ${HOME}/.dosbox
154blacklist ${HOME}/.dropbox-dist 154blacklist ${HOME}/.dropbox-dist
diff --git a/etc/keepassx2.profile b/etc/keepassx2.profile
new file mode 100644
index 000000000..d8621773f
--- /dev/null
+++ b/etc/keepassx2.profile
@@ -0,0 +1,22 @@
1# keepassx password manager profile
2noblacklist ${HOME}/.config/keepassx
3noblacklist ${HOME}/.keepassx
4noblacklist ${HOME}/keepassx.kdbx
5
6include /etc/firejail/disable-common.inc
7include /etc/firejail/disable-programs.inc
8include /etc/firejail/disable-devel.inc
9include /etc/firejail/disable-passwdmgr.inc
10
11caps.drop all
12nogroups
13nonewprivs
14noroot
15nosound
16protocol unix
17seccomp
18netfilter
19shell none
20
21private-tmp
22private-dev
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-10 08:21:39 +0000