diff options
-rw-r--r-- | Makefile.in | 1 | ||||
-rw-r--r-- | etc/Telegram.profile | 13 | ||||
-rw-r--r-- | etc/telegram.profile | 3 | ||||
-rw-r--r-- | platform/debian/conffiles | 1 |
4 files changed, 15 insertions, 3 deletions
diff --git a/Makefile.in b/Makefile.in index 604c76f9f..9ee65c975 100644 --- a/Makefile.in +++ b/Makefile.in | |||
@@ -219,6 +219,7 @@ realinstall: | |||
219 | install -c -m 0644 .etc/strings.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 219 | install -c -m 0644 .etc/strings.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
220 | install -c -m 0644 .etc/xz.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 220 | install -c -m 0644 .etc/xz.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
221 | install -c -m 0644 .etc/less.profile $(DESTDIR)/$(sysconfdir)/firejail/. | 221 | install -c -m 0644 .etc/less.profile $(DESTDIR)/$(sysconfdir)/firejail/. |
222 | install -c -m 0644 .etc/Telegram.profile $(DESTDIR)/$(sysconfdir)/firejail/. | ||
222 | sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" | 223 | sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" |
223 | install -c -m 0644 etc/firejail.config $(DESTDIR)/$(sysconfdir)/firejail/. | 224 | install -c -m 0644 etc/firejail.config $(DESTDIR)/$(sysconfdir)/firejail/. |
224 | rm -fr .etc | 225 | rm -fr .etc |
diff --git a/etc/Telegram.profile b/etc/Telegram.profile new file mode 100644 index 000000000..8e91e426b --- /dev/null +++ b/etc/Telegram.profile | |||
@@ -0,0 +1,13 @@ | |||
1 | # Telegram IRC profile | ||
2 | noblacklist ${HOME}/.TelegramDesktop | ||
3 | include /etc/firejail/disable-common.inc | ||
4 | include /etc/firejail/disable-programs.inc | ||
5 | include /etc/firejail/disable-devel.inc | ||
6 | |||
7 | caps.drop all | ||
8 | netfilter | ||
9 | nonewprivs | ||
10 | noroot | ||
11 | protocol unix,inet,inet6 | ||
12 | seccomp | ||
13 | |||
diff --git a/etc/telegram.profile b/etc/telegram.profile index 819cd8f3a..8e91e426b 100644 --- a/etc/telegram.profile +++ b/etc/telegram.profile | |||
@@ -11,6 +11,3 @@ noroot | |||
11 | protocol unix,inet,inet6 | 11 | protocol unix,inet,inet6 |
12 | seccomp | 12 | seccomp |
13 | 13 | ||
14 | whitelist ~/Downloads/Telegram Desktop | ||
15 | mkdir ${HOME}/.TelegramDesktop | ||
16 | whitelist ~/.TelegramDesktop | ||
diff --git a/platform/debian/conffiles b/platform/debian/conffiles index 62a4cfebe..9ef2f1b26 100644 --- a/platform/debian/conffiles +++ b/platform/debian/conffiles | |||
@@ -125,4 +125,5 @@ | |||
125 | /etc/firejail/strings.profile | 125 | /etc/firejail/strings.profile |
126 | /etc/firejail/xz.profile | 126 | /etc/firejail/xz.profile |
127 | /etc/firejail/less.profile | 127 | /etc/firejail/less.profile |
128 | /etc/firejail/Telegram.profile | ||
128 | 129 | ||