diff options
-rw-r--r-- | Makefile.in | 3 | ||||
-rw-r--r-- | README.md | 5 | ||||
-rw-r--r-- | etc/wine.profile | 11 |
3 files changed, 19 insertions, 0 deletions
diff --git a/Makefile.in b/Makefile.in index 0baad25cc..952dfd376 100644 --- a/Makefile.in +++ b/Makefile.in | |||
@@ -108,6 +108,9 @@ realinstall: | |||
108 | install -c -m 0644 etc/filezilla.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 108 | install -c -m 0644 etc/filezilla.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
109 | install -c -m 0644 etc/fbreader.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 109 | install -c -m 0644 etc/fbreader.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
110 | install -c -m 0644 etc/spotify.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 110 | install -c -m 0644 etc/spotify.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
111 | install -c -m 0644 etc/steam.profile $(DESTDIR)/$(sysconfdir)/firejail/. | ||
112 | install -c -m 0644 etc/skype.profile $(DESTDIR)/$(sysconfdir)/firejail/. | ||
113 | install -c -m 0644 etc/wine.profile $(DESTDIR)/$(sysconfdir)/firejail/. | ||
111 | bash -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" | 114 | bash -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" |
112 | # man pages | 115 | # man pages |
113 | rm -f firejail.1.gz | 116 | rm -f firejail.1.gz |
@@ -82,4 +82,9 @@ Recognized values: unix, inet, inet6, netlink and packet. Example: | |||
82 | $ firejail --protocol=unix,inet,inet6 firefox | 82 | $ firejail --protocol=unix,inet,inet6 firefox |
83 | ````` | 83 | ````` |
84 | 84 | ||
85 | ### New security profiles | ||
86 | |||
87 | Steam, Skype, Wine | ||
88 | |||
89 | |||
85 | 90 | ||
diff --git a/etc/wine.profile b/etc/wine.profile new file mode 100644 index 000000000..3319f912f --- /dev/null +++ b/etc/wine.profile | |||
@@ -0,0 +1,11 @@ | |||
1 | # wine profile | ||
2 | noblacklist ${HOME}/.steam | ||
3 | noblacklist ${HOME}/.local/share/steam | ||
4 | include /etc/firejail/disable-mgmt.inc | ||
5 | include /etc/firejail/disable-secret.inc | ||
6 | include /etc/firejail/disable-common.inc | ||
7 | include /etc/firejail/disable-history.inc | ||
8 | caps.drop all | ||
9 | netfilter | ||
10 | noroot | ||
11 | seccomp | ||