1 files changed, 11 insertions, 11 deletions
diff --git a/etc/gnome-maps.profile b/etc/gnome-maps.profile
index 8c7310fa9..1e60c4470 100644
--- a/etc/gnome-maps.profile
+++ b/etc/gnome-maps.profile
@@ -1,20 +1,21 @@
-# Persistent global definitions go here
+# Firejail profile for gnome-maps
-include /etc/firejail/globals.local
+# This file is overwritten after every install/update
+# Persistent local customizations
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
 include /etc/firejail/gnome-maps.local
+# Persistent global definitions
-# gnome-maps profile
+include /etc/firejail/globals.local
 # when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them
 noblacklist ${HOME}/.cache/champlain
 include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-devel.inc
 include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
 caps.drop all
+netfilter
 nogroups
 nonewprivs
 noroot
@@ -22,15 +23,14 @@ nosound
 novideo
 protocol unix,inet,inet6
 seccomp
-netfilter
 shell none
 tracelog
+disable-mnt
 # private-bin gjs gnome-maps
-private-tmp
 private-dev
 # private-etc fonts
-disable-mnt
+private-tmp
 noexec ${HOME}
 noexec /tmp

diff --git a/etc/gnome-maps.profile b/etc/gnome-maps.profile index 8c7310fa9..1e60c4470 100644 --- a/etc/gnome-maps.profile +++ b/etc/gnome-maps.profile
@@ -1,20 +1,21 @@
1	# Persistent global definitions go here	1	# Firejail profile for gnome-maps
2	include /etc/firejail/globals.local	2	# This file is overwritten after every install/update
3		3	# Persistent local customizations
4	# This file is overwritten during software install.
5	# Persistent customizations should go in a .local file.
6	include /etc/firejail/gnome-maps.local	4	include /etc/firejail/gnome-maps.local
7		5	# Persistent global definitions
8	# gnome-maps profile	6	include /etc/firejail/globals.local
9		7
10	# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them	8	# when gjs apps are started via gnome-shell, firejail is not applied because systemd will start them
		9
11	noblacklist ${HOME}/.cache/champlain	10	noblacklist ${HOME}/.cache/champlain
		11
12	include /etc/firejail/disable-common.inc	12	include /etc/firejail/disable-common.inc
13	include /etc/firejail/disable-programs.inc
14	include /etc/firejail/disable-devel.inc	13	include /etc/firejail/disable-devel.inc
15	include /etc/firejail/disable-passwdmgr.inc	14	include /etc/firejail/disable-passwdmgr.inc
		15	include /etc/firejail/disable-programs.inc
16		16
17	caps.drop all	17	caps.drop all
		18	netfilter
18	nogroups	19	nogroups
19	nonewprivs	20	nonewprivs
20	noroot	21	noroot
@@ -22,15 +23,14 @@ nosound
22	novideo	23	novideo
23	protocol unix,inet,inet6	24	protocol unix,inet,inet6
24	seccomp	25	seccomp
25	netfilter
26	shell none	26	shell none
27	tracelog	27	tracelog
28		28
		29	disable-mnt
29	# private-bin gjs gnome-maps	30	# private-bin gjs gnome-maps
30	private-tmp
31	private-dev	31	private-dev
32	# private-etc fonts	32	# private-etc fonts
33	disable-mnt	33	private-tmp
34		34
35	noexec ${HOME}	35	noexec ${HOME}
36	noexec /tmp	36	noexec /tmp