diff options
Diffstat (limited to 'etc/exiftool.profile')
-rw-r--r-- | etc/exiftool.profile | 21 |
1 files changed, 10 insertions, 11 deletions
diff --git a/etc/exiftool.profile b/etc/exiftool.profile index e69a6206e..3637fc989 100644 --- a/etc/exiftool.profile +++ b/etc/exiftool.profile | |||
@@ -1,36 +1,35 @@ | |||
1 | # Firejail profile for exiftool | ||
2 | # This file is overwritten after every install/update | ||
1 | quiet | 3 | quiet |
2 | # Persistent global definitions go here | 4 | # Persistent local customizations |
5 | include /etc/firejail/exiftool.local | ||
6 | # Persistent global definitions | ||
3 | include /etc/firejail/globals.local | 7 | include /etc/firejail/globals.local |
4 | 8 | ||
5 | # This file is overwritten during software install. | 9 | blacklist /tmp/.X11-unix |
6 | # Persistent customizations should go in a .local file. | ||
7 | include /etc/firejail/exiftool.local | ||
8 | 10 | ||
9 | # exiftool profile | ||
10 | noblacklist /usr/bin/perl | 11 | noblacklist /usr/bin/perl |
11 | noblacklist /usr/share/perl* | ||
12 | noblacklist /usr/lib/perl* | 12 | noblacklist /usr/lib/perl* |
13 | noblacklist /usr/share/perl* | ||
13 | 14 | ||
14 | include /etc/firejail/disable-common.inc | 15 | include /etc/firejail/disable-common.inc |
15 | include /etc/firejail/disable-programs.inc | ||
16 | include /etc/firejail/disable-devel.inc | 16 | include /etc/firejail/disable-devel.inc |
17 | include /etc/firejail/disable-passwdmgr.inc | 17 | include /etc/firejail/disable-passwdmgr.inc |
18 | include /etc/firejail/disable-programs.inc | ||
18 | 19 | ||
19 | caps.drop all | 20 | caps.drop all |
20 | net none | 21 | net none |
22 | no3d | ||
21 | nogroups | 23 | nogroups |
22 | nonewprivs | 24 | nonewprivs |
23 | noroot | 25 | noroot |
24 | nosound | 26 | nosound |
25 | protocol unix | 27 | protocol unix |
26 | seccomp | 28 | seccomp |
27 | no3d | ||
28 | shell none | 29 | shell none |
29 | tracelog | 30 | tracelog |
30 | 31 | ||
31 | blacklist /tmp/.X11-unix | ||
32 | |||
33 | # private-bin exiftool,perl | 32 | # private-bin exiftool,perl |
34 | private-tmp | ||
35 | private-dev | 33 | private-dev |
36 | private-etc none | 34 | private-etc none |
35 | private-tmp | ||