aboutsummaryrefslogtreecommitdiffstats
path: root/etc/inc
diff options
context:
space:
mode:
Diffstat (limited to 'etc/inc')
-rw-r--r--etc/inc/disable-common.inc15
-rw-r--r--etc/inc/disable-programs.inc1
-rw-r--r--etc/inc/whitelist-common.inc4
3 files changed, 15 insertions, 5 deletions
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc
index 6b44c1de5..4277100ce 100644
--- a/etc/inc/disable-common.inc
+++ b/etc/inc/disable-common.inc
@@ -69,6 +69,9 @@ blacklist ${HOME}/.xsessionrc
69blacklist /etc/X11/Xsession.d 69blacklist /etc/X11/Xsession.d
70blacklist /etc/xdg/autostart 70blacklist /etc/xdg/autostart
71read-only ${HOME}/.Xauthority 71read-only ${HOME}/.Xauthority
72read-only ${HOME}/.config/awesome/autorun.sh
73read-only ${HOME}/.config/openbox/autostart
74read-only ${HOME}/.config/openbox/environment
72 75
73# Session manager 76# Session manager
74# see #3358 77# see #3358
@@ -330,6 +333,7 @@ read-only ${HOME}/.ssh/config.d
330# Initialization files that allow arbitrary command execution 333# Initialization files that allow arbitrary command execution
331read-only ${HOME}/.caffrc 334read-only ${HOME}/.caffrc
332read-only ${HOME}/.cargo/env 335read-only ${HOME}/.cargo/env
336read-only ${HOME}/.config/mpv
333read-only ${HOME}/.config/nano 337read-only ${HOME}/.config/nano
334read-only ${HOME}/.config/nvim 338read-only ${HOME}/.config/nvim
335read-only ${HOME}/.config/pkcs11 339read-only ${HOME}/.config/pkcs11
@@ -338,6 +342,7 @@ read-only ${HOME}/.elinks
338read-only ${HOME}/.emacs 342read-only ${HOME}/.emacs
339read-only ${HOME}/.emacs.d 343read-only ${HOME}/.emacs.d
340read-only ${HOME}/.exrc 344read-only ${HOME}/.exrc
345read-only ${HOME}/.gnupg/gpg.conf
341read-only ${HOME}/.gvimrc 346read-only ${HOME}/.gvimrc
342read-only ${HOME}/.homesick 347read-only ${HOME}/.homesick
343read-only ${HOME}/.iscreenrc 348read-only ${HOME}/.iscreenrc
@@ -346,6 +351,7 @@ read-only ${HOME}/.local/share/cool-retro-term
346read-only ${HOME}/.local/share/nvim 351read-only ${HOME}/.local/share/nvim
347read-only ${HOME}/.local/state/nvim 352read-only ${HOME}/.local/state/nvim
348read-only ${HOME}/.mailcap 353read-only ${HOME}/.mailcap
354read-only ${HOME}/.mozilla/firefox/profiles.ini
349read-only ${HOME}/.msmtprc 355read-only ${HOME}/.msmtprc
350read-only ${HOME}/.mutt/muttrc 356read-only ${HOME}/.mutt/muttrc
351read-only ${HOME}/.muttrc 357read-only ${HOME}/.muttrc
@@ -367,6 +373,10 @@ read-only ${HOME}/_gvimrc
367read-only ${HOME}/_vimrc 373read-only ${HOME}/_vimrc
368read-only ${HOME}/dotfiles 374read-only ${HOME}/dotfiles
369 375
376# System package managers and AUR helpers
377blacklist ${HOME}/.config/cower
378read-only ${HOME}/.config/cower/config
379
370# Make directories commonly found in $PATH read-only 380# Make directories commonly found in $PATH read-only
371read-only ${HOME}/.bin 381read-only ${HOME}/.bin
372read-only ${HOME}/.cargo/bin 382read-only ${HOME}/.cargo/bin
@@ -392,6 +402,11 @@ read-only ${HOME}/.config/user-dirs.dirs
392read-only ${HOME}/.config/user-dirs.locale 402read-only ${HOME}/.config/user-dirs.locale
393read-only ${HOME}/.local/share/mime 403read-only ${HOME}/.local/share/mime
394 404
405# Configuration files that do not allow arbitrary command execution but that
406# are intended to be modified manually (in a text editor and/or by a program
407# dedicated to managing them)
408read-only ${HOME}/.config/MangoHud
409
395# Write-protection for thumbnailer dir 410# Write-protection for thumbnailer dir
396read-only ${HOME}/.local/share/thumbnailers 411read-only ${HOME}/.local/share/thumbnailers
397 412
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc
index c7e2f2ca9..211111aaa 100644
--- a/etc/inc/disable-programs.inc
+++ b/etc/inc/disable-programs.inc
@@ -402,7 +402,6 @@ blacklist ${HOME}/.config/cmus
402blacklist ${HOME}/.config/cointop 402blacklist ${HOME}/.config/cointop
403blacklist ${HOME}/.config/com.github.bleakgrey.tootle 403blacklist ${HOME}/.config/com.github.bleakgrey.tootle
404blacklist ${HOME}/.config/corebird 404blacklist ${HOME}/.config/corebird
405blacklist ${HOME}/.config/cower
406blacklist ${HOME}/.config/coyim 405blacklist ${HOME}/.config/coyim
407blacklist ${HOME}/.config/d-feet 406blacklist ${HOME}/.config/d-feet
408blacklist ${HOME}/.config/darktable 407blacklist ${HOME}/.config/darktable
diff --git a/etc/inc/whitelist-common.inc b/etc/inc/whitelist-common.inc
index a139f2187..cae059f89 100644
--- a/etc/inc/whitelist-common.inc
+++ b/etc/inc/whitelist-common.inc
@@ -10,16 +10,12 @@ whitelist ${HOME}/.asoundrc
10whitelist ${HOME}/.config/ibus 10whitelist ${HOME}/.config/ibus
11whitelist ${HOME}/.config/mimeapps.list 11whitelist ${HOME}/.config/mimeapps.list
12whitelist ${HOME}/.config/pkcs11 12whitelist ${HOME}/.config/pkcs11
13read-only ${HOME}/.config/pkcs11
14whitelist ${HOME}/.config/user-dirs.dirs 13whitelist ${HOME}/.config/user-dirs.dirs
15read-only ${HOME}/.config/user-dirs.dirs
16whitelist ${HOME}/.config/user-dirs.locale 14whitelist ${HOME}/.config/user-dirs.locale
17read-only ${HOME}/.config/user-dirs.locale
18whitelist ${HOME}/.drirc 15whitelist ${HOME}/.drirc
19whitelist ${HOME}/.icons 16whitelist ${HOME}/.icons
20?HAS_APPIMAGE: whitelist ${HOME}/.local/share/appimagekit 17?HAS_APPIMAGE: whitelist ${HOME}/.local/share/appimagekit
21whitelist ${HOME}/.local/share/applications 18whitelist ${HOME}/.local/share/applications
22read-only ${HOME}/.local/share/applications
23whitelist ${HOME}/.local/share/icons 19whitelist ${HOME}/.local/share/icons
24whitelist ${HOME}/.local/share/mime 20whitelist ${HOME}/.local/share/mime
25whitelist ${HOME}/.mime.types 21whitelist ${HOME}/.mime.types
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-08-19 09:00:01 +0000