1 files changed, 34 insertions, 0 deletions
diff --git a/etc/tilp.profile b/etc/tilp.profile
new file mode 100644
index 000000000..a6165fbfe
--- /dev/null
+++ b/etc/tilp.profile
@@ -0,0 +1,34 @@
+# Firejail profile for tilp
+# This file is overwritten after every install/update
+# Persistent local customizations
+include /etc/firejail/tilp.local
+# Persistent global definitions
+include /etc/firejail/globals.local
+noblacklist ${HOME}/.tilp
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
+caps.drop all
+net none
+nodvd
+nogroups
+nonewprivs
+noroot
+notv
+novideo
+protocol unix,netlink
+seccomp
+shell none
+tracelog
+disable-mnt
+private-bin tilp
+private-etc fonts
+private-tmp
+noexec ${HOME}
+noexec /tmp

diff --git a/etc/tilp.profile b/etc/tilp.profile new file mode 100644 index 000000000..a6165fbfe --- /dev/null +++ b/etc/tilp.profile
@@ -0,0 +1,34 @@
	1	# Firejail profile for tilp
	2	# This file is overwritten after every install/update
	3	# Persistent local customizations
	4	include /etc/firejail/tilp.local
	5	# Persistent global definitions
	6	include /etc/firejail/globals.local
	7
	8	noblacklist ${HOME}/.tilp
	9
	10	include /etc/firejail/disable-common.inc
	11	include /etc/firejail/disable-devel.inc
	12	include /etc/firejail/disable-passwdmgr.inc
	13	include /etc/firejail/disable-programs.inc
	14
	15	caps.drop all
	16	net none
	17	nodvd
	18	nogroups
	19	nonewprivs
	20	noroot
	21	notv
	22	novideo
	23	protocol unix,netlink
	24	seccomp
	25	shell none
	26	tracelog
	27
	28	disable-mnt
	29	private-bin tilp
	30	private-etc fonts
	31	private-tmp
	32
	33	noexec ${HOME}
	34	noexec /tmp