diff options
Diffstat (limited to 'etc/google-earth.profile')
-rw-r--r-- | etc/google-earth.profile | 17 |
1 files changed, 13 insertions, 4 deletions
diff --git a/etc/google-earth.profile b/etc/google-earth.profile index 32da9a5a8..b60f5b3a5 100644 --- a/etc/google-earth.profile +++ b/etc/google-earth.profile | |||
@@ -6,7 +6,10 @@ include /etc/firejail/google-earth.local | |||
6 | include /etc/firejail/globals.local | 6 | include /etc/firejail/globals.local |
7 | 7 | ||
8 | noblacklist ${HOME}/.config/Google | 8 | noblacklist ${HOME}/.config/Google |
9 | noblacklist ${HOME}/.googleearth | 9 | noblacklist ${HOME}/.googleearth/Cache/ |
10 | noblacklist ${HOME}/.googleearth/Temp/ | ||
11 | noblacklist ${HOME}/.googleearth/myplaces.backup.kml | ||
12 | noblacklist ${HOME}/.googleearth/myplaces.kml | ||
10 | 13 | ||
11 | include /etc/firejail/disable-common.inc | 14 | include /etc/firejail/disable-common.inc |
12 | include /etc/firejail/disable-devel.inc | 15 | include /etc/firejail/disable-devel.inc |
@@ -14,9 +17,15 @@ include /etc/firejail/disable-passwdmgr.inc | |||
14 | include /etc/firejail/disable-programs.inc | 17 | include /etc/firejail/disable-programs.inc |
15 | 18 | ||
16 | mkdir ${HOME}/.config/Google | 19 | mkdir ${HOME}/.config/Google |
17 | mkdir ${HOME}/.googleearth | 20 | mkdir ${HOME}/.googleearth/Cache/ |
21 | mkdir ${HOME}/.googleearth/Temp/ | ||
22 | mkfile ${HOME}/.googleearth/myplaces.backup.kml | ||
23 | mkfile ${HOME}/.googleearth/myplaces.kml | ||
18 | whitelist ${HOME}/.config/Google | 24 | whitelist ${HOME}/.config/Google |
19 | whitelist ${HOME}/.googleearth | 25 | whitelist ${HOME}/.googleearth/Cache/ |
26 | whitelist ${HOME}/.googleearth/Temp/ | ||
27 | whitelist ${HOME}/.googleearth/myplaces.backup.kml | ||
28 | whitelist ${HOME}/.googleearth/myplaces.kml | ||
20 | include /etc/firejail/whitelist-common.inc | 29 | include /etc/firejail/whitelist-common.inc |
21 | 30 | ||
22 | caps.drop all | 31 | caps.drop all |
@@ -32,7 +41,7 @@ protocol unix,inet,inet6 | |||
32 | seccomp | 41 | seccomp |
33 | shell none | 42 | shell none |
34 | 43 | ||
35 | private-bin google-earth,sh,grep,sed,ls,dirname | 44 | private-bin google-earth,sh,bash,dash,grep,sed,ls,dirname |
36 | private-dev | 45 | private-dev |
37 | 46 | ||
38 | noexec ${HOME} | 47 | noexec ${HOME} |