1 files changed, 15 insertions, 17 deletions
diff --git a/etc/hexchat.profile b/etc/hexchat.profile
index 36ddb9e89..ceebb6d18 100644
--- a/etc/hexchat.profile
+++ b/etc/hexchat.profile
@@ -1,21 +1,23 @@
-# Persistent global definitions go here
+# Firejail profile for hexchat
-include /etc/firejail/globals.local
+# This file is overwritten after every install/update
+# Persistent local customizations
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
 include /etc/firejail/hexchat.local
+# Persistent global definitions
+include /etc/firejail/globals.local
-# HexChat instant messaging profile
-# Currently in testing (may not work for all users)
 noblacklist ${HOME}/.config/hexchat
-#noblacklist /usr/lib/python2*
+# noblacklist /usr/lib/python2*
-#noblacklist /usr/lib/python3*
+# noblacklist /usr/lib/python3*
 include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-programs.inc
+mkdir ~/.config/hexchat
+whitelist ~/.config/hexchat
+include /etc/firejail/whitelist-common.inc
 caps.drop all
-#ipc-namespace
 netfilter
 no3d
 nogroups
@@ -28,15 +30,11 @@ seccomp
 shell none
 tracelog
-mkdir ~/.config/hexchat
+disable-mnt
-whitelist ~/.config/hexchat
+# debug note: private-bin requires perl, python, etc on some systems
-include /etc/firejail/whitelist-common.inc
 private-bin hexchat
-#debug note: private-bin requires perl, python, etc on some systems
 private-dev
 private-tmp
-disable-mnt
 noexec ${HOME}
 noexec /tmp

diff --git a/etc/hexchat.profile b/etc/hexchat.profile index 36ddb9e89..ceebb6d18 100644 --- a/etc/hexchat.profile +++ b/etc/hexchat.profile
@@ -1,21 +1,23 @@
1	# Persistent global definitions go here	1	# Firejail profile for hexchat
2	include /etc/firejail/globals.local	2	# This file is overwritten after every install/update
3		3	# Persistent local customizations
4	# This file is overwritten during software install.
5	# Persistent customizations should go in a .local file.
6	include /etc/firejail/hexchat.local	4	include /etc/firejail/hexchat.local
		5	# Persistent global definitions
		6	include /etc/firejail/globals.local
7		7
8	# HexChat instant messaging profile
9	# Currently in testing (may not work for all users)
10	noblacklist ${HOME}/.config/hexchat	8	noblacklist ${HOME}/.config/hexchat
11	#noblacklist /usr/lib/python2*	9	# noblacklist /usr/lib/python2*
12	#noblacklist /usr/lib/python3*	10	# noblacklist /usr/lib/python3*
		11
13	include /etc/firejail/disable-common.inc	12	include /etc/firejail/disable-common.inc
14	include /etc/firejail/disable-programs.inc
15	include /etc/firejail/disable-devel.inc	13	include /etc/firejail/disable-devel.inc
		14	include /etc/firejail/disable-programs.inc
		15
		16	mkdir ~/.config/hexchat
		17	whitelist ~/.config/hexchat
		18	include /etc/firejail/whitelist-common.inc
16		19
17	caps.drop all	20	caps.drop all
18	#ipc-namespace
19	netfilter	21	netfilter
20	no3d	22	no3d
21	nogroups	23	nogroups
@@ -28,15 +30,11 @@ seccomp
28	shell none	30	shell none
29	tracelog	31	tracelog
30		32
31	mkdir ~/.config/hexchat	33	disable-mnt
32	whitelist ~/.config/hexchat	34	# debug note: private-bin requires perl, python, etc on some systems
33	include /etc/firejail/whitelist-common.inc
34
35	private-bin hexchat	35	private-bin hexchat
36	#debug note: private-bin requires perl, python, etc on some systems
37	private-dev	36	private-dev
38	private-tmp	37	private-tmp
39	disable-mnt
40		38
41	noexec ${HOME}	39	noexec ${HOME}
42	noexec /tmp	40	noexec /tmp