diff options
-rw-r--r-- | README | 2 | ||||
-rw-r--r-- | README.md | 2 | ||||
-rw-r--r-- | RELNOTES | 3 | ||||
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/geary.profile | 28 | ||||
-rw-r--r-- | platform/debian/conffiles | 1 | ||||
-rw-r--r-- | src/firecfg/firecfg.config | 1 |
7 files changed, 35 insertions, 3 deletions
@@ -411,7 +411,7 @@ startx2017 (https://github.com/startx2017) | |||
411 | - Blender and 2048-qt profiles | 411 | - Blender and 2048-qt profiles |
412 | - handbrake profile | 412 | - handbrake profile |
413 | - mplayer and smplayer profiles | 413 | - mplayer and smplayer profiles |
414 | - kwrite profile | 414 | - kwrite and geary profiles |
415 | thewisenerd (https://github.com/thewisenerd) | 415 | thewisenerd (https://github.com/thewisenerd) |
416 | - allow multiple private-home commands | 416 | - allow multiple private-home commands |
417 | - use $SHELL variable if the shell is not specified | 417 | - use $SHELL variable if the shell is not specified |
@@ -66,5 +66,5 @@ Use this issue to request new profiles: https://github.com/netblue30/firejail/is | |||
66 | 66 | ||
67 | ## New profiles: | 67 | ## New profiles: |
68 | 68 | ||
69 | curl, mplayer2, SMPlayer, Calibre, ebook-viewer | 69 | curl, mplayer2, SMPlayer, Calibre, ebook-viewer, KWrite, Geary |
70 | 70 | ||
@@ -1,6 +1,7 @@ | |||
1 | firejail (0.9.49) baseline; urgency=low | 1 | firejail (0.9.49) baseline; urgency=low |
2 | * work in progress! | 2 | * work in progress! |
3 | * new profiles: curl, mplayer2, SMPlayer, Calibre, ebook-viewer, KWrite | 3 | * new profiles: curl, mplayer2, SMPlayer, Calibre, ebook-viewer, KWrite, |
4 | * new profiles: Geary | ||
4 | * bugfixes | 5 | * bugfixes |
5 | -- netblue30 <netblue30@yahoo.com> Mon, 12 Jun 2017 20:00:00 -0500 | 6 | -- netblue30 <netblue30@yahoo.com> Mon, 12 Jun 2017 20:00:00 -0500 |
6 | 7 | ||
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 911a050e5..655a44a04 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -268,6 +268,7 @@ blacklist ${HOME}/.local/share/epiphany | |||
268 | blacklist ${HOME}/.local/share/evolution | 268 | blacklist ${HOME}/.local/share/evolution |
269 | blacklist ${HOME}/.local/share/feral-interactive | 269 | blacklist ${HOME}/.local/share/feral-interactive |
270 | blacklist ${HOME}/.local/share/gajim | 270 | blacklist ${HOME}/.local/share/gajim |
271 | blacklist ${HOME}/.local/share/geary | ||
271 | blacklist ${HOME}/.local/share/geeqie | 272 | blacklist ${HOME}/.local/share/geeqie |
272 | blacklist ${HOME}/.local/share/gnome-2048 | 273 | blacklist ${HOME}/.local/share/gnome-2048 |
273 | blacklist ${HOME}/.local/share/gnome-chess | 274 | blacklist ${HOME}/.local/share/gnome-chess |
diff --git a/etc/geary.profile b/etc/geary.profile new file mode 100644 index 000000000..1b702c83c --- /dev/null +++ b/etc/geary.profile | |||
@@ -0,0 +1,28 @@ | |||
1 | # Persistent global definitions go here | ||
2 | include /etc/firejail/globals.local | ||
3 | |||
4 | # This file is overwritten during software install. | ||
5 | # Persistent customizations should go in a .local file. | ||
6 | include /etc/firejail/geray.local | ||
7 | |||
8 | # Firejail profile for Gnome Geary | ||
9 | # Users have Geary set to open a browser by clicking a link in an email | ||
10 | # We are not allowed to blacklist browser-specific directories | ||
11 | |||
12 | noblacklist ~/.gnupg | ||
13 | mkdir ~/.gnupg | ||
14 | whitelist ~/.gnupg | ||
15 | |||
16 | noblacklist ~/.local/share/geary | ||
17 | mkdir ~/.local/share/geary | ||
18 | whitelist ~/.local/share/geary | ||
19 | |||
20 | whitelist ~/.config/mimeapps.list | ||
21 | read-only ~/.config/mimeapps.list | ||
22 | whitelist ~/.local/share/applications | ||
23 | read-only ~/.local/share/applications | ||
24 | |||
25 | # allow browsers | ||
26 | ignore private-tmp | ||
27 | include /etc/firejail/firefox.profile | ||
28 | #include /etc/firejail/chromium.profile - chromium runs as suid! | ||
diff --git a/platform/debian/conffiles b/platform/debian/conffiles index d08329022..a8f597b07 100644 --- a/platform/debian/conffiles +++ b/platform/debian/conffiles | |||
@@ -315,3 +315,4 @@ | |||
315 | /etc/firejail/handbrake-gtk.profile | 315 | /etc/firejail/handbrake-gtk.profile |
316 | /etc/firejail/ghb.profile | 316 | /etc/firejail/ghb.profile |
317 | /etc/firejail/kwrite.profile | 317 | /etc/firejail/kwrite.profile |
318 | /etc/firejail/geary.profile | ||
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config index e9883cb68..6a93f4976 100644 --- a/src/firecfg/firecfg.config +++ b/src/firecfg/firecfg.config | |||
@@ -74,6 +74,7 @@ FossaMail | |||
74 | gajim | 74 | gajim |
75 | galculator | 75 | galculator |
76 | geany | 76 | geany |
77 | geary | ||
77 | gedit | 78 | gedit |
78 | geeqie | 79 | geeqie |
79 | ghb | 80 | ghb |