aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--etc/inc/disable-programs.inc2
-rw-r--r--etc/profile-a-l/alacarte.profile2
-rw-r--r--etc/profile-a-l/element-desktop.profile5
-rw-r--r--etc/profile-a-l/feh.profile1
-rw-r--r--etc/profile-a-l/links.profile1
-rw-r--r--etc/profile-a-l/lynx.profile1
-rw-r--r--etc/profile-m-z/nheko.profile18
-rw-r--r--etc/profile-m-z/spectral.profile4
8 files changed, 30 insertions, 4 deletions
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc
index 7df40c705..961437ad7 100644
--- a/etc/inc/disable-programs.inc
+++ b/etc/inc/disable-programs.inc
@@ -961,7 +961,7 @@ blacklist ${HOME}/.cache/ms-skype-online
961blacklist ${HOME}/.cache/ms-word-online 961blacklist ${HOME}/.cache/ms-word-online
962blacklist ${HOME}/.cache/mutt 962blacklist ${HOME}/.cache/mutt
963blacklist ${HOME}/.cache/mypaint 963blacklist ${HOME}/.cache/mypaint
964blacklist ${HOME}/.cache/nheko/nheko 964blacklist ${HOME}/.cache/nheko
965blacklist ${HOME}/.cache/netsurf 965blacklist ${HOME}/.cache/netsurf
966blacklist ${HOME}/.cache/okular 966blacklist ${HOME}/.cache/okular
967blacklist ${HOME}/.cache/opera 967blacklist ${HOME}/.cache/opera
diff --git a/etc/profile-a-l/alacarte.profile b/etc/profile-a-l/alacarte.profile
index 8f7640ffe..98188d2a7 100644
--- a/etc/profile-a-l/alacarte.profile
+++ b/etc/profile-a-l/alacarte.profile
@@ -49,7 +49,7 @@ shell none
49tracelog 49tracelog
50 50
51disable-mnt 51disable-mnt
52private-bin alacarte,bash,python*,sh 52# private-bin alacarte,bash,python*,sh
53private-cache 53private-cache
54private-dev 54private-dev
55private-etc alternatives,dconf,fonts,gtk-3.0,locale.alias,locale.conf,login.defs,mime.types,nsswitch.conf,passwd,pki,X11,xdg 55private-etc alternatives,dconf,fonts,gtk-3.0,locale.alias,locale.conf,login.defs,mime.types,nsswitch.conf,passwd,pki,X11,xdg
diff --git a/etc/profile-a-l/element-desktop.profile b/etc/profile-a-l/element-desktop.profile
index 2d56369cd..48a826f2e 100644
--- a/etc/profile-a-l/element-desktop.profile
+++ b/etc/profile-a-l/element-desktop.profile
@@ -7,6 +7,8 @@ include element-desktop.local
7# added by included profile 7# added by included profile
8#include globals.local 8#include globals.local
9 9
10ignore dbus-user none
11
10noblacklist ${HOME}/.config/Element 12noblacklist ${HOME}/.config/Element
11 13
12mkdir ${HOME}/.config/Element 14mkdir ${HOME}/.config/Element
@@ -15,5 +17,8 @@ whitelist /opt/Element
15 17
16private-opt Element 18private-opt Element
17 19
20dbus-user filter
21dbus-user.talk org.freedesktop.secrets
22
18# Redirect 23# Redirect
19include riot-desktop.profile 24include riot-desktop.profile
diff --git a/etc/profile-a-l/feh.profile b/etc/profile-a-l/feh.profile
index 3ee07e559..8ac7755de 100644
--- a/etc/profile-a-l/feh.profile
+++ b/etc/profile-a-l/feh.profile
@@ -1,6 +1,7 @@
1# Firejail profile for feh 1# Firejail profile for feh
2# Description: imlib2 based image viewer 2# Description: imlib2 based image viewer
3# This file is overwritten after every install/update 3# This file is overwritten after every install/update
4quiet
4# Persistent local customizations 5# Persistent local customizations
5include feh.local 6include feh.local
6# Persistent global definitions 7# Persistent global definitions
diff --git a/etc/profile-a-l/links.profile b/etc/profile-a-l/links.profile
index b2f94d3cf..ccc77f274 100644
--- a/etc/profile-a-l/links.profile
+++ b/etc/profile-a-l/links.profile
@@ -1,6 +1,7 @@
1# Firejail profile for links 1# Firejail profile for links
2# Description: Text WWW browser 2# Description: Text WWW browser
3# This file is overwritten after every install/update 3# This file is overwritten after every install/update
4quiet
4# Persistent local customizations 5# Persistent local customizations
5include links.local 6include links.local
6# Persistent global definitions 7# Persistent global definitions
diff --git a/etc/profile-a-l/lynx.profile b/etc/profile-a-l/lynx.profile
index dbd0a61e5..76a0e7ed0 100644
--- a/etc/profile-a-l/lynx.profile
+++ b/etc/profile-a-l/lynx.profile
@@ -1,6 +1,7 @@
1# Firejail profile for lynx 1# Firejail profile for lynx
2# Description: Classic non-graphical (text-mode) web browser 2# Description: Classic non-graphical (text-mode) web browser
3# This file is overwritten after every install/update 3# This file is overwritten after every install/update
4quiet
4# Persistent local customizations 5# Persistent local customizations
5include lynx.local 6include lynx.local
6# Persistent global definitions 7# Persistent global definitions
diff --git a/etc/profile-m-z/nheko.profile b/etc/profile-m-z/nheko.profile
index 701098f4b..42e7e92fc 100644
--- a/etc/profile-m-z/nheko.profile
+++ b/etc/profile-m-z/nheko.profile
@@ -7,7 +7,7 @@ include nheko.local
7include globals.local 7include globals.local
8 8
9noblacklist ${HOME}/.config/nheko 9noblacklist ${HOME}/.config/nheko
10noblacklist ${HOME}/.cache/nheko/nheko 10noblacklist ${HOME}/.cache/nheko
11 11
12include disable-common.inc 12include disable-common.inc
13include disable-devel.inc 13include disable-devel.inc
@@ -16,14 +16,19 @@ include disable-interpreters.inc
16include disable-passwdmgr.inc 16include disable-passwdmgr.inc
17include disable-programs.inc 17include disable-programs.inc
18include disable-shell.inc 18include disable-shell.inc
19include disable-xdg.inc
19 20
20mkdir ${HOME}/.config/nheko 21mkdir ${HOME}/.config/nheko
21mkdir ${HOME}/.cache/nheko/nheko 22mkdir ${HOME}/.cache/nheko/nheko
22whitelist ${HOME}/.config/nheko 23whitelist ${HOME}/.config/nheko
23whitelist ${HOME}/.cache/nheko/nheko 24whitelist ${HOME}/.cache/nheko
24whitelist ${DOWNLOADS} 25whitelist ${DOWNLOADS}
25include whitelist-common.inc 26include whitelist-common.inc
27include whitelist-runuser-common.inc
28include whitelist-usr-share-common.inc
29include whitelist-var-common.inc
26 30
31apparmor
27caps.drop all 32caps.drop all
28netfilter 33netfilter
29nodvd 34nodvd
@@ -38,5 +43,14 @@ tracelog
38 43
39disable-mnt 44disable-mnt
40private-bin nheko 45private-bin nheko
46private-cache
47private-dev
48private-etc alsa,alternatives,asound.conf,ca-certificates,crypto-policies,fonts,gtk-2.0,gtk-3.0,host.conf,hostname,hosts,ld.so.cache,ld.so.conf,ld.so.conf.d,ld.so.preload,locale,locale.alias,locale.conf,mime.types,nsswitch.conf,pki,pulse,resolv.conf,selinux,ssl,X11,xdg
41private-tmp 49private-tmp
42 50
51dbus-user none
52# Comment the above line and uncomment below lines for notification popups
53# dbus-user filter
54# dbus-user.talk org.freedesktop.Notifications
55# dbus-user.talk org.kde.StatusNotifierWatcher
56dbus-system none
diff --git a/etc/profile-m-z/spectral.profile b/etc/profile-m-z/spectral.profile
index 66e917432..093661d8c 100644
--- a/etc/profile-m-z/spectral.profile
+++ b/etc/profile-m-z/spectral.profile
@@ -50,4 +50,8 @@ private-etc alsa,alternatives,asound.conf,ca-certificates,crypto-policies,fonts,
50private-tmp 50private-tmp
51 51
52dbus-user none 52dbus-user none
53# Comment the above line and uncomment below lines for notification popups
54# dbus-user filter
55# dbus-user.talk org.freedesktop.Notifications
56# dbus-user.talk org.kde.StatusNotifierWatcher
53dbus-system none 57dbus-system none
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-08 17:18:28 +0000