aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar rusty-snake <print_hello_world+Public@protonmail.com>2019-10-06 09:50:24 +0200
committerLibravatar rusty-snake <print_hello_world+Public@protonmail.com>2019-10-06 09:50:24 +0200
commitfc917b11d69f9e86d482c269865f7c959f5854c1 (patch)
tree714e883d27ff1298460df6a342a6a652706d32da /etc
parentFix wusc in thunderbird (diff)
downloadfirejail-fc917b11d69f9e86d482c269865f7c959f5854c1.tar.gz
firejail-fc917b11d69f9e86d482c269865f7c959f5854c1.tar.zst
firejail-fc917b11d69f9e86d482c269865f7c959f5854c1.zip
various profile fixes
Diffstat (limited to 'etc')
-rw-r--r--etc/disable-programs.inc3
-rw-r--r--etc/gnome-maps.profile1
-rw-r--r--etc/qtox.profile1
-rw-r--r--etc/rhythmbox.profile1
-rw-r--r--etc/utox.profile1
-rw-r--r--etc/zathura.profile5
6 files changed, 12 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index b6025c750..9098d38c8 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -691,6 +691,7 @@ blacklist ${HOME}/.cache/Franz
691blacklist ${HOME}/.cache/INRIA 691blacklist ${HOME}/.cache/INRIA
692blacklist ${HOME}/.cache/MusicBrainz 692blacklist ${HOME}/.cache/MusicBrainz
693blacklist ${HOME}/.cache/QuiteRss 693blacklist ${HOME}/.cache/QuiteRss
694blacklist ${HOME}/.cache/Tox
694blacklist ${HOME}/.cache/Zeal 695blacklist ${HOME}/.cache/Zeal
695blacklist ${HOME}/.cache/akonadi* 696blacklist ${HOME}/.cache/akonadi*
696blacklist ${HOME}/.cache/atril 697blacklist ${HOME}/.cache/atril
@@ -763,6 +764,7 @@ blacklist ${HOME}/.cache/okular
763blacklist ${HOME}/.cache/opera 764blacklist ${HOME}/.cache/opera
764blacklist ${HOME}/.cache/opera-beta 765blacklist ${HOME}/.cache/opera-beta
765blacklist ${HOME}/.cache/org.gnome.Books 766blacklist ${HOME}/.cache/org.gnome.Books
767blacklist ${HOME}/.cache/org.gnome.Maps
766blacklist ${HOME}/.cache/pdfmod 768blacklist ${HOME}/.cache/pdfmod
767blacklist ${HOME}/.cache/peek 769blacklist ${HOME}/.cache/peek
768blacklist ${HOME}/.cache/plasmashell 770blacklist ${HOME}/.cache/plasmashell
@@ -770,6 +772,7 @@ blacklist ${HOME}/.cache/plasmashellbookmarkrunnerfirefoxdbfile.sqlite*
770blacklist ${HOME}/.cache/qBittorrent 772blacklist ${HOME}/.cache/qBittorrent
771blacklist ${HOME}/.cache/qupzilla 773blacklist ${HOME}/.cache/qupzilla
772blacklist ${HOME}/.cache/qutebrowser 774blacklist ${HOME}/.cache/qutebrowser
775blacklist ${HOME}/.cache/rhythmbox
773blacklist ${HOME}/.cache/simple-scan 776blacklist ${HOME}/.cache/simple-scan
774blacklist ${HOME}/.cache/slimjet 777blacklist ${HOME}/.cache/slimjet
775blacklist ${HOME}/.cache/snox 778blacklist ${HOME}/.cache/snox
diff --git a/etc/gnome-maps.profile b/etc/gnome-maps.profile
index 6f7f13c56..a625db948 100644
--- a/etc/gnome-maps.profile
+++ b/etc/gnome-maps.profile
@@ -9,6 +9,7 @@ include globals.local
9# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them 9# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them
10 10
11noblacklist ${HOME}/.cache/champlain 11noblacklist ${HOME}/.cache/champlain
12noblacklist ${HOME}/.cache/org.gnome.Maps
12noblacklist ${HOME}/.local/share/flatpak 13noblacklist ${HOME}/.local/share/flatpak
13noblacklist ${HOME}/.local/share/maps-places.json 14noblacklist ${HOME}/.local/share/maps-places.json
14 15
diff --git a/etc/qtox.profile b/etc/qtox.profile
index c3e8fb95c..cb2a78920 100644
--- a/etc/qtox.profile
+++ b/etc/qtox.profile
@@ -6,6 +6,7 @@ include qtox.local
6# Persistent global definitions 6# Persistent global definitions
7include globals.local 7include globals.local
8 8
9noblacklist ${HOME}/.cache/Tox
9noblacklist ${HOME}/.config/tox 10noblacklist ${HOME}/.config/tox
10 11
11include disable-common.inc 12include disable-common.inc
diff --git a/etc/rhythmbox.profile b/etc/rhythmbox.profile
index b5f9941e3..ad8b1015e 100644
--- a/etc/rhythmbox.profile
+++ b/etc/rhythmbox.profile
@@ -7,6 +7,7 @@ include rhythmbox.local
7include globals.local 7include globals.local
8 8
9noblacklist ${MUSIC} 9noblacklist ${MUSIC}
10noblacklist ${HOME}/.cache/rhythmbox
10noblacklist ${HOME}/.local/share/rhythmbox 11noblacklist ${HOME}/.local/share/rhythmbox
11 12
12# Allow python (blacklisted by disable-interpreters.inc) 13# Allow python (blacklisted by disable-interpreters.inc)
diff --git a/etc/utox.profile b/etc/utox.profile
index 454e3260b..9877ea889 100644
--- a/etc/utox.profile
+++ b/etc/utox.profile
@@ -6,6 +6,7 @@ include utox.local
6# Persistent global definitions 6# Persistent global definitions
7include globals.local 7include globals.local
8 8
9noblacklist ${HOME}/.cache/Tox
9noblacklist ${HOME}/.config/tox 10noblacklist ${HOME}/.config/tox
10 11
11include disable-common.inc 12include disable-common.inc
diff --git a/etc/zathura.profile b/etc/zathura.profile
index 0a7956efb..68a5701ee 100644
--- a/etc/zathura.profile
+++ b/etc/zathura.profile
@@ -12,6 +12,7 @@ noblacklist ${DOCUMENTS}
12 12
13include disable-common.inc 13include disable-common.inc
14include disable-devel.inc 14include disable-devel.inc
15include disable-exec.inc
15include disable-interpreters.inc 16include disable-interpreters.inc
16include disable-passwdmgr.inc 17include disable-passwdmgr.inc
17include disable-programs.inc 18include disable-programs.inc
@@ -32,6 +33,7 @@ novideo
32protocol unix 33protocol unix
33seccomp 34seccomp
34shell none 35shell none
36tracelog
35 37
36private-bin zathura 38private-bin zathura
37private-cache 39private-cache
@@ -39,5 +41,8 @@ private-dev
39private-etc alternatives,fonts,machine-id 41private-etc alternatives,fonts,machine-id
40private-tmp 42private-tmp
41 43
44mkdir ${HOME}/.config/zathura
45mkdir ${HOME}/.local/share/zathura
42read-only ${HOME} 46read-only ${HOME}
47read-write ${HOME}/.config/zathura
43read-write ${HOME}/.local/share/zathura 48read-write ${HOME}/.local/share/zathura
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-05 23:08:56 +0000