diff options
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/xfce4-mixer.profile | 49 | ||||
-rw-r--r-- | src/firecfg/firecfg.config | 1 |
3 files changed, 51 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 10d8b0463..de0f7a537 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -271,6 +271,7 @@ blacklist ${HOME}/.config/xfburn | |||
271 | blacklist ${HOME}/.config/xfce4/xfce4-notes.gtkrc | 271 | blacklist ${HOME}/.config/xfce4/xfce4-notes.gtkrc |
272 | blacklist ${HOME}/.config/xfce4/xfce4-notes.rc | 272 | blacklist ${HOME}/.config/xfce4/xfce4-notes.rc |
273 | blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml | 273 | blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml |
274 | blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-mixer.xml | ||
274 | blacklist ${HOME}/.config/xfce4-dict | 275 | blacklist ${HOME}/.config/xfce4-dict |
275 | blacklist ${HOME}/.config/xiaoyong | 276 | blacklist ${HOME}/.config/xiaoyong |
276 | blacklist ${HOME}/.config/xmms2 | 277 | blacklist ${HOME}/.config/xmms2 |
diff --git a/etc/xfce4-mixer.profile b/etc/xfce4-mixer.profile new file mode 100644 index 000000000..fc39bff60 --- /dev/null +++ b/etc/xfce4-mixer.profile | |||
@@ -0,0 +1,49 @@ | |||
1 | # Firejail profile for xfce4-mixer | ||
2 | # Description: Volume control for Xfce | ||
3 | # This file is overwritten after every install/update | ||
4 | # Persistent local customizations | ||
5 | include xfce4-mixer.local | ||
6 | # Persistent global definitions | ||
7 | include globals.local | ||
8 | |||
9 | noblacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-mixer.xml | ||
10 | |||
11 | include disable-common.inc | ||
12 | include disable-devel.inc | ||
13 | include disable-interpreters.inc | ||
14 | include disable-passwdmgr.inc | ||
15 | include disable-programs.inc | ||
16 | include disable-xdg.inc | ||
17 | |||
18 | include whitelist-common.inc | ||
19 | include whitelist-var-common.inc | ||
20 | |||
21 | apparmor | ||
22 | caps.drop all | ||
23 | ipc-namespace | ||
24 | machine-id | ||
25 | netfilter | ||
26 | no3d | ||
27 | # nodbus | ||
28 | nodvd | ||
29 | nogroups | ||
30 | nonewprivs | ||
31 | noroot | ||
32 | # nosound | ||
33 | notv | ||
34 | nou2f | ||
35 | novideo | ||
36 | protocol unix | ||
37 | seccomp | ||
38 | shell none | ||
39 | |||
40 | disable-mnt | ||
41 | private-bin xfce4-mixer,xfconf-query | ||
42 | private-cache | ||
43 | private-dev | ||
44 | private-etc alternatives,asound.conf,fonts,pulse | ||
45 | private-tmp | ||
46 | |||
47 | memory-deny-write-execute | ||
48 | noexec ${HOME} | ||
49 | noexec /tmp | ||
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config index cea22eb21..8d8070b79 100644 --- a/src/firecfg/firecfg.config +++ b/src/firecfg/firecfg.config | |||
@@ -501,6 +501,7 @@ xed | |||
501 | xfburn | 501 | xfburn |
502 | xfce4-dict | 502 | xfce4-dict |
503 | xfce4-notes | 503 | xfce4-notes |
504 | xfce4-mixer | ||
504 | xiphos | 505 | xiphos |
505 | xmms | 506 | xmms |
506 | xmr-stak | 507 | xmr-stak |