aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--Makefile.in1
-rw-r--r--README1
-rw-r--r--README.md2
-rw-r--r--RELNOTES2
-rw-r--r--etc/0ad.profile30
-rw-r--r--etc/disable-programs.inc3
-rw-r--r--platform/debian/conffiles1
7 files changed, 38 insertions, 2 deletions
diff --git a/Makefile.in b/Makefile.in
index 3a555f55c..16f8e8717 100644
--- a/Makefile.in
+++ b/Makefile.in
@@ -163,6 +163,7 @@ realinstall:
163 install -c -m 0644 .etc/palemoon.profile $(DESTDIR)/$(sysconfdir)/firejail/. 163 install -c -m 0644 .etc/palemoon.profile $(DESTDIR)/$(sysconfdir)/firejail/.
164 install -c -m 0644 .etc/icedove.profile $(DESTDIR)/$(sysconfdir)/firejail/. 164 install -c -m 0644 .etc/icedove.profile $(DESTDIR)/$(sysconfdir)/firejail/.
165 install -c -m 0644 .etc/abrowser.profile $(DESTDIR)/$(sysconfdir)/firejail/. 165 install -c -m 0644 .etc/abrowser.profile $(DESTDIR)/$(sysconfdir)/firejail/.
166 install -c -m 0644 .etc/0ad.profile $(DESTDIR)/$(sysconfdir)/firejail/.
166 sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" 167 sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;"
167 sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/firejail.config ]; then install -c -m 0644 etc/firejail.config $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" 168 sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/firejail.config ]; then install -c -m 0644 etc/firejail.config $(DESTDIR)/$(sysconfdir)/firejail/.; fi;"
168 rm -fr .etc 169 rm -fr .etc
diff --git a/README b/README
index ee58143b5..81481f512 100644
--- a/README
+++ b/README
@@ -24,6 +24,7 @@ Fred-Barclay (https://github.com/Fred-Barclay)
24 - added Vivaldi, Atril profiles 24 - added Vivaldi, Atril profiles
25 - added PaleMoon profile 25 - added PaleMoon profile
26 - split Icedove and Thunderbird profiles 26 - split Icedove and Thunderbird profiles
27 - added 0ad profile
27avoidr (https://github.com/avoidr) 28avoidr (https://github.com/avoidr)
28 - whitelist fix 29 - whitelist fix
29 - recently-used.xbel fix 30 - recently-used.xbel fix
diff --git a/README.md b/README.md
index e18777bf5..7f6f573b4 100644
--- a/README.md
+++ b/README.md
@@ -281,5 +281,5 @@ $ man firejail-profile
281 281
282## New security profiles 282## New security profiles
283lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril, qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars, qTox, 283lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril, qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars, qTox,
284OpenSSH client, OpenBox window manager, Dillo, cmus, dnsmasq, PaleMoon, Icedove, abrowser 284OpenSSH client, OpenBox window manager, Dillo, cmus, dnsmasq, PaleMoon, Icedove, abrowser, 0ad
285 285
diff --git a/RELNOTES b/RELNOTES
index 9f231a7f3..d1675e7b0 100644
--- a/RELNOTES
+++ b/RELNOTES
@@ -18,7 +18,7 @@ firejail (0.9.40-rc1) baseline; urgency=low
18 * new profiles: lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril 18 * new profiles: lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril
19 * new profiles: qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars 19 * new profiles: qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars
20 * new profiles: qTox, OpenSSH client, OpenBox, Dillo, cmus, dnsmasq 20 * new profiles: qTox, OpenSSH client, OpenBox, Dillo, cmus, dnsmasq
21 * new profiles: PaleMoon, Icedove 21 * new profiles: PaleMoon, Icedove, 0ad
22 * build rpm packages using "make rpms" 22 * build rpm packages using "make rpms"
23 * bugfixes 23 * bugfixes
24 -- netblue30 <netblue30@yahoo.com> Sun, 3 Apr 2016 08:00:00 -0500 24 -- netblue30 <netblue30@yahoo.com> Sun, 3 Apr 2016 08:00:00 -0500
diff --git a/etc/0ad.profile b/etc/0ad.profile
new file mode 100644
index 000000000..f8a3ce23d
--- /dev/null
+++ b/etc/0ad.profile
@@ -0,0 +1,30 @@
1# Firejail profile for 0ad.
2noblacklist ~/.config/0ad
3include /etc/firejail/disable-common.inc
4include /etc/firejail/disable-devel.inc
5include /etc/firejail/disable-passwdmgr.inc
6include /etc/firejail/disable-programs.inc
7
8# Call these options
9caps.drop all
10seccomp
11protocol unix,inet,inet6,netlink
12netfilter
13tracelog
14noroot
15
16# Whitelists
17noblacklist ~/.cache/0ad
18mkdir ~/.cache
19mkdir ~/.cache/0ad
20whitelist ~/.cache/0ad
21
22mkdir ~/.config
23mkdir ~/.config/0ad
24whitelist ~/.config/0ad
25
26noblacklist ~/.local/share/0ad
27mkdir ~/.local
28mkdir ~/.local/share
29mkdir ~/.local/share/0ad
30whitelist ~/.local/share/0ad
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 7faf75638..7f18aa16f 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -53,6 +53,7 @@ blacklist ${HOME}/.TelegramDesktop
53blacklist ${HOME}/.hedgewars 53blacklist ${HOME}/.hedgewars
54blacklist ${HOME}/.steam 54blacklist ${HOME}/.steam
55blacklist ${HOME}/.config/wesnoth 55blacklist ${HOME}/.config/wesnoth
56blacklist ${HOME}/.config/0ad
56 57
57# Cryptocoins 58# Cryptocoins
58blacklist ${HOME}/.*coin 59blacklist ${HOME}/.*coin
@@ -81,6 +82,7 @@ blacklist ${HOME}/.cache/thunderbird
81blacklist ${HOME}/.cache/icedove 82blacklist ${HOME}/.cache/icedove
82blacklist ${HOME}/.cache/transmission 83blacklist ${HOME}/.cache/transmission
83blacklist ${HOME}/.cache/wesnoth 84blacklist ${HOME}/.cache/wesnoth
85blacklist ${HOME}/.cache/0ad
84 86
85# share 87# share
86blacklist ${HOME}/.local/share/epiphany 88blacklist ${HOME}/.local/share/epiphany
@@ -88,3 +90,4 @@ blacklist ${HOME}/.local/share/mupen64plus
88blacklist ${HOME}/.local/share/spotify 90blacklist ${HOME}/.local/share/spotify
89blacklist ${HOME}/.local/share/steam 91blacklist ${HOME}/.local/share/steam
90blacklist ${HOME}/.local/share/wesnoth 92blacklist ${HOME}/.local/share/wesnoth
93blacklist ${HOME}/.local/share/0ad
diff --git a/platform/debian/conffiles b/platform/debian/conffiles
index 7ed4c3152..dc8640147 100644
--- a/platform/debian/conffiles
+++ b/platform/debian/conffiles
@@ -82,3 +82,4 @@
82/etc/firejail/dnsmasq.profile 82/etc/firejail/dnsmasq.profile
83/etc/firejail/palemoon.profile 83/etc/firejail/palemoon.profile
84/etc/firejail/abrowser.profile 84/etc/firejail/abrowser.profile
85/etc/firejail/0ad.profile
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-08 22:43:00 +0000