diff options
-rw-r--r-- | etc/aria2c.profile | 1 | ||||
-rw-r--r-- | etc/artha.profile | 1 | ||||
-rw-r--r-- | etc/dnsmasq.profile | 1 | ||||
-rw-r--r-- | etc/elinks.profile | 1 | ||||
-rw-r--r-- | etc/gconf-editor.profile | 1 | ||||
-rw-r--r-- | etc/gist.profile | 1 | ||||
-rw-r--r-- | etc/git.profile | 1 | ||||
-rw-r--r-- | etc/gpg-agent.profile | 1 | ||||
-rw-r--r-- | etc/gpg.profile | 1 | ||||
-rw-r--r-- | etc/links.profile | 1 | ||||
-rw-r--r-- | etc/lynx.profile | 1 | ||||
-rw-r--r-- | etc/mutt.profile | 1 | ||||
-rw-r--r-- | etc/rsync-download_only.profile | 1 | ||||
-rw-r--r-- | etc/seahorse.profile | 1 | ||||
-rw-r--r-- | etc/server.profile | 1 | ||||
-rw-r--r-- | etc/signal-cli.profile | 1 | ||||
-rw-r--r-- | etc/ssh-agent.profile | 1 | ||||
-rw-r--r-- | etc/tracker.profile | 1 | ||||
-rw-r--r-- | etc/unbound.profile | 1 | ||||
-rw-r--r-- | etc/w3m.profile | 1 | ||||
-rw-r--r-- | etc/wget.profile | 1 | ||||
-rw-r--r-- | etc/whois.profile | 1 | ||||
-rw-r--r-- | etc/youtube-dl.profile | 1 |
23 files changed, 23 insertions, 0 deletions
diff --git a/etc/aria2c.profile b/etc/aria2c.profile index f46202ac8..7819300af 100644 --- a/etc/aria2c.profile +++ b/etc/aria2c.profile | |||
@@ -11,6 +11,7 @@ noblacklist ${HOME}/.config/aria2 | |||
11 | noblacklist ${HOME}/.netrc | 11 | noblacklist ${HOME}/.netrc |
12 | 12 | ||
13 | blacklist /tmp/.X11-unix | 13 | blacklist /tmp/.X11-unix |
14 | blacklist ${RUNUSER}/wayland-* | ||
14 | 15 | ||
15 | include disable-common.inc | 16 | include disable-common.inc |
16 | include disable-devel.inc | 17 | include disable-devel.inc |
diff --git a/etc/artha.profile b/etc/artha.profile index 31f8887c4..aaaede7ee 100644 --- a/etc/artha.profile +++ b/etc/artha.profile | |||
@@ -11,6 +11,7 @@ noblacklist ${HOME}/.config/artha.log | |||
11 | noblacklist ${HOME}/.config/enchant | 11 | noblacklist ${HOME}/.config/enchant |
12 | 12 | ||
13 | blacklist /tmp/.X11-unix | 13 | blacklist /tmp/.X11-unix |
14 | blacklist ${RUNUSER}/wayland-* | ||
14 | 15 | ||
15 | include disable-common.inc | 16 | include disable-common.inc |
16 | include disable-devel.inc | 17 | include disable-devel.inc |
diff --git a/etc/dnsmasq.profile b/etc/dnsmasq.profile index dfb1b61c1..6db71bd49 100644 --- a/etc/dnsmasq.profile +++ b/etc/dnsmasq.profile | |||
@@ -11,6 +11,7 @@ noblacklist /sbin | |||
11 | noblacklist /usr/sbin | 11 | noblacklist /usr/sbin |
12 | 12 | ||
13 | blacklist /tmp/.X11-unix | 13 | blacklist /tmp/.X11-unix |
14 | blacklist ${RUNUSER}/wayland-* | ||
14 | 15 | ||
15 | include disable-common.inc | 16 | include disable-common.inc |
16 | include disable-devel.inc | 17 | include disable-devel.inc |
diff --git a/etc/elinks.profile b/etc/elinks.profile index 94f4179c7..82d1ba528 100644 --- a/etc/elinks.profile +++ b/etc/elinks.profile | |||
@@ -9,6 +9,7 @@ include globals.local | |||
9 | noblacklist ${HOME}/.elinks | 9 | noblacklist ${HOME}/.elinks |
10 | 10 | ||
11 | blacklist /tmp/.X11-unix | 11 | blacklist /tmp/.X11-unix |
12 | blacklist ${RUNUSER}/wayland-* | ||
12 | 13 | ||
13 | include disable-common.inc | 14 | include disable-common.inc |
14 | include disable-devel.inc | 15 | include disable-devel.inc |
diff --git a/etc/gconf-editor.profile b/etc/gconf-editor.profile index a2c441a20..7325bfb4c 100644 --- a/etc/gconf-editor.profile +++ b/etc/gconf-editor.profile | |||
@@ -8,6 +8,7 @@ include gconf-editor.local | |||
8 | #include globals.local | 8 | #include globals.local |
9 | 9 | ||
10 | blacklist /tmp/.X11-unix | 10 | blacklist /tmp/.X11-unix |
11 | blacklist ${RUNUSER}/wayland-* | ||
11 | 12 | ||
12 | ignore net none | 13 | ignore net none |
13 | ignore x11 none | 14 | ignore x11 none |
diff --git a/etc/gist.profile b/etc/gist.profile index 7413238c8..59fcb2775 100644 --- a/etc/gist.profile +++ b/etc/gist.profile | |||
@@ -8,6 +8,7 @@ include gist.local | |||
8 | include globals.local | 8 | include globals.local |
9 | 9 | ||
10 | blacklist /tmp/.X11-unix | 10 | blacklist /tmp/.X11-unix |
11 | blacklist ${RUNUSER}/wayland-* | ||
11 | 12 | ||
12 | noblacklist ${HOME}/.gist | 13 | noblacklist ${HOME}/.gist |
13 | 14 | ||
diff --git a/etc/git.profile b/etc/git.profile index dbaaefcc4..da55f8744 100644 --- a/etc/git.profile +++ b/etc/git.profile | |||
@@ -20,6 +20,7 @@ noblacklist ${HOME}/.vim | |||
20 | noblacklist ${HOME}/.viminfo | 20 | noblacklist ${HOME}/.viminfo |
21 | 21 | ||
22 | blacklist /tmp/.X11-unix | 22 | blacklist /tmp/.X11-unix |
23 | blacklist ${RUNUSER}/wayland-* | ||
23 | 24 | ||
24 | include disable-common.inc | 25 | include disable-common.inc |
25 | include disable-exec.inc | 26 | include disable-exec.inc |
diff --git a/etc/gpg-agent.profile b/etc/gpg-agent.profile index c11773147..2710ac88e 100644 --- a/etc/gpg-agent.profile +++ b/etc/gpg-agent.profile | |||
@@ -10,6 +10,7 @@ include globals.local | |||
10 | noblacklist ${HOME}/.gnupg | 10 | noblacklist ${HOME}/.gnupg |
11 | 11 | ||
12 | blacklist /tmp/.X11-unix | 12 | blacklist /tmp/.X11-unix |
13 | blacklist ${RUNUSER}/wayland-* | ||
13 | 14 | ||
14 | include disable-common.inc | 15 | include disable-common.inc |
15 | include disable-devel.inc | 16 | include disable-devel.inc |
diff --git a/etc/gpg.profile b/etc/gpg.profile index 5eb18a0bc..a60d42cf8 100644 --- a/etc/gpg.profile +++ b/etc/gpg.profile | |||
@@ -10,6 +10,7 @@ include globals.local | |||
10 | noblacklist ${HOME}/.gnupg | 10 | noblacklist ${HOME}/.gnupg |
11 | 11 | ||
12 | blacklist /tmp/.X11-unix | 12 | blacklist /tmp/.X11-unix |
13 | blacklist ${RUNUSER}/wayland-* | ||
13 | 14 | ||
14 | include disable-common.inc | 15 | include disable-common.inc |
15 | include disable-devel.inc | 16 | include disable-devel.inc |
diff --git a/etc/links.profile b/etc/links.profile index bd0b0cc92..a31001c87 100644 --- a/etc/links.profile +++ b/etc/links.profile | |||
@@ -9,6 +9,7 @@ include globals.local | |||
9 | noblacklist ${HOME}/.links | 9 | noblacklist ${HOME}/.links |
10 | 10 | ||
11 | blacklist /tmp/.X11-unix | 11 | blacklist /tmp/.X11-unix |
12 | blacklist ${RUNUSER}/wayland-* | ||
12 | 13 | ||
13 | include disable-common.inc | 14 | include disable-common.inc |
14 | include disable-devel.inc | 15 | include disable-devel.inc |
diff --git a/etc/lynx.profile b/etc/lynx.profile index 063285316..fb6fe94ec 100644 --- a/etc/lynx.profile +++ b/etc/lynx.profile | |||
@@ -7,6 +7,7 @@ include lynx.local | |||
7 | include globals.local | 7 | include globals.local |
8 | 8 | ||
9 | blacklist /tmp/.X11-unix | 9 | blacklist /tmp/.X11-unix |
10 | blacklist ${RUNUSER}/wayland-* | ||
10 | 11 | ||
11 | include disable-common.inc | 12 | include disable-common.inc |
12 | include disable-devel.inc | 13 | include disable-devel.inc |
diff --git a/etc/mutt.profile b/etc/mutt.profile index 92babd50f..1fc412955 100644 --- a/etc/mutt.profile +++ b/etc/mutt.profile | |||
@@ -32,6 +32,7 @@ noblacklist ${HOME}/postponed | |||
32 | noblacklist ${HOME}/sent | 32 | noblacklist ${HOME}/sent |
33 | 33 | ||
34 | blacklist /tmp/.X11-unix | 34 | blacklist /tmp/.X11-unix |
35 | blacklist ${RUNUSER}/wayland-* | ||
35 | 36 | ||
36 | include disable-common.inc | 37 | include disable-common.inc |
37 | include disable-devel.inc | 38 | include disable-devel.inc |
diff --git a/etc/rsync-download_only.profile b/etc/rsync-download_only.profile index bda3bca92..84147f0a5 100644 --- a/etc/rsync-download_only.profile +++ b/etc/rsync-download_only.profile | |||
@@ -13,6 +13,7 @@ include globals.local | |||
13 | # Usage: firejail --profile=rsync-download_only rsync | 13 | # Usage: firejail --profile=rsync-download_only rsync |
14 | 14 | ||
15 | blacklist /tmp/.X11-unix | 15 | blacklist /tmp/.X11-unix |
16 | blacklist ${RUNUSER}/wayland-* | ||
16 | 17 | ||
17 | include disable-common.inc | 18 | include disable-common.inc |
18 | include disable-devel.inc | 19 | include disable-devel.inc |
diff --git a/etc/seahorse.profile b/etc/seahorse.profile index 5a742d05f..0470dc286 100644 --- a/etc/seahorse.profile +++ b/etc/seahorse.profile | |||
@@ -7,6 +7,7 @@ include seahorse.local | |||
7 | include globals.local | 7 | include globals.local |
8 | 8 | ||
9 | blacklist /tmp/.X11-unix | 9 | blacklist /tmp/.X11-unix |
10 | blacklist ${RUNUSER}/wayland-* | ||
10 | 11 | ||
11 | noblacklist ${HOME}/.gnupg | 12 | noblacklist ${HOME}/.gnupg |
12 | noblacklist ${HOME}/.ssh | 13 | noblacklist ${HOME}/.ssh |
diff --git a/etc/server.profile b/etc/server.profile index 6e077ff84..ce318a828 100644 --- a/etc/server.profile +++ b/etc/server.profile | |||
@@ -14,6 +14,7 @@ noblacklist /usr/sbin | |||
14 | # noblacklist /var/opt | 14 | # noblacklist /var/opt |
15 | 15 | ||
16 | blacklist /tmp/.X11-unix | 16 | blacklist /tmp/.X11-unix |
17 | blacklist ${RUNUSER}/wayland-* | ||
17 | 18 | ||
18 | include disable-common.inc | 19 | include disable-common.inc |
19 | # include disable-devel.inc | 20 | # include disable-devel.inc |
diff --git a/etc/signal-cli.profile b/etc/signal-cli.profile index bb1bf732d..6a2f5c434 100644 --- a/etc/signal-cli.profile +++ b/etc/signal-cli.profile | |||
@@ -7,6 +7,7 @@ include signal-cli.local | |||
7 | include globals.local | 7 | include globals.local |
8 | 8 | ||
9 | blacklist /tmp/.X11-unix | 9 | blacklist /tmp/.X11-unix |
10 | blacklist ${RUNUSER}/wayland-* | ||
10 | 11 | ||
11 | noblacklist ${HOME}/.local/share/signal-cli | 12 | noblacklist ${HOME}/.local/share/signal-cli |
12 | 13 | ||
diff --git a/etc/ssh-agent.profile b/etc/ssh-agent.profile index 8e355a176..cf509852a 100644 --- a/etc/ssh-agent.profile +++ b/etc/ssh-agent.profile | |||
@@ -11,6 +11,7 @@ noblacklist /tmp/ssh-* | |||
11 | noblacklist ${HOME}/.ssh | 11 | noblacklist ${HOME}/.ssh |
12 | 12 | ||
13 | blacklist /tmp/.X11-unix | 13 | blacklist /tmp/.X11-unix |
14 | blacklist ${RUNUSER}/wayland-* | ||
14 | 15 | ||
15 | include disable-common.inc | 16 | include disable-common.inc |
16 | include disable-passwdmgr.inc | 17 | include disable-passwdmgr.inc |
diff --git a/etc/tracker.profile b/etc/tracker.profile index 6e107d99e..d47185b1d 100644 --- a/etc/tracker.profile +++ b/etc/tracker.profile | |||
@@ -9,6 +9,7 @@ include globals.local | |||
9 | # Tracker is started by systemd on most systems. Therefore it is not firejailed by default | 9 | # Tracker is started by systemd on most systems. Therefore it is not firejailed by default |
10 | 10 | ||
11 | blacklist /tmp/.X11-unix | 11 | blacklist /tmp/.X11-unix |
12 | blacklist ${RUNUSER}/wayland-* | ||
12 | 13 | ||
13 | include disable-common.inc | 14 | include disable-common.inc |
14 | include disable-devel.inc | 15 | include disable-devel.inc |
diff --git a/etc/unbound.profile b/etc/unbound.profile index 67448d766..36533a762 100644 --- a/etc/unbound.profile +++ b/etc/unbound.profile | |||
@@ -10,6 +10,7 @@ noblacklist /sbin | |||
10 | noblacklist /usr/sbin | 10 | noblacklist /usr/sbin |
11 | 11 | ||
12 | blacklist /tmp/.X11-unix | 12 | blacklist /tmp/.X11-unix |
13 | blacklist ${RUNUSER}/wayland-* | ||
13 | 14 | ||
14 | include disable-common.inc | 15 | include disable-common.inc |
15 | include disable-devel.inc | 16 | include disable-devel.inc |
diff --git a/etc/w3m.profile b/etc/w3m.profile index 76531d315..97465baa1 100644 --- a/etc/w3m.profile +++ b/etc/w3m.profile | |||
@@ -9,6 +9,7 @@ include globals.local | |||
9 | noblacklist ${HOME}/.w3m | 9 | noblacklist ${HOME}/.w3m |
10 | 10 | ||
11 | blacklist /tmp/.X11-unix | 11 | blacklist /tmp/.X11-unix |
12 | blacklist ${RUNUSER}/wayland-* | ||
12 | 13 | ||
13 | include allow-perl.inc | 14 | include allow-perl.inc |
14 | 15 | ||
diff --git a/etc/wget.profile b/etc/wget.profile index c1f7dfc3f..401926e2d 100644 --- a/etc/wget.profile +++ b/etc/wget.profile | |||
@@ -12,6 +12,7 @@ noblacklist ${HOME}/.wget-hsts | |||
12 | noblacklist ${HOME}/.wgetrc | 12 | noblacklist ${HOME}/.wgetrc |
13 | 13 | ||
14 | blacklist /tmp/.X11-unix | 14 | blacklist /tmp/.X11-unix |
15 | blacklist ${RUNUSER}/wayland-* | ||
15 | 16 | ||
16 | include disable-common.inc | 17 | include disable-common.inc |
17 | include disable-devel.inc | 18 | include disable-devel.inc |
diff --git a/etc/whois.profile b/etc/whois.profile index bd0870bea..7f48afd36 100644 --- a/etc/whois.profile +++ b/etc/whois.profile | |||
@@ -8,6 +8,7 @@ include whois.local | |||
8 | include globals.local | 8 | include globals.local |
9 | 9 | ||
10 | blacklist /tmp/.X11-unix | 10 | blacklist /tmp/.X11-unix |
11 | blacklist ${RUNUSER}/wayland-* | ||
11 | 12 | ||
12 | include disable-common.inc | 13 | include disable-common.inc |
13 | include disable-devel.inc | 14 | include disable-devel.inc |
diff --git a/etc/youtube-dl.profile b/etc/youtube-dl.profile index 5fa72c9dc..19effef47 100644 --- a/etc/youtube-dl.profile +++ b/etc/youtube-dl.profile | |||
@@ -21,6 +21,7 @@ include allow-python2.inc | |||
21 | include allow-python3.inc | 21 | include allow-python3.inc |
22 | 22 | ||
23 | blacklist /tmp/.X11-unix | 23 | blacklist /tmp/.X11-unix |
24 | blacklist ${RUNUSER}/wayland-* | ||
24 | 25 | ||
25 | include disable-common.inc | 26 | include disable-common.inc |
26 | include disable-devel.inc | 27 | include disable-devel.inc |