diff options
Diffstat (limited to 'etc/karbon.profile')
-rw-r--r-- | etc/karbon.profile | 20 |
1 files changed, 4 insertions, 16 deletions
diff --git a/etc/karbon.profile b/etc/karbon.profile index da72432f7..7d7f25ad0 100644 --- a/etc/karbon.profile +++ b/etc/karbon.profile | |||
@@ -5,21 +5,11 @@ include /etc/firejail/karbon.local | |||
5 | # Persistent global definitions | 5 | # Persistent global definitions |
6 | include /etc/firejail/globals.local | 6 | include /etc/firejail/globals.local |
7 | 7 | ||
8 | blacklist /boot | ||
9 | blacklist /media | ||
10 | blacklist /mnt | ||
11 | blacklist /opt | ||
12 | 8 | ||
13 | whitelist ${DOWNLOADS} | 9 | include /etc/firejail/disable-common.inc |
14 | whitelist ${HOME}/.config/Trolltech.conf | 10 | include /etc/firejail/disable-devel.inc |
15 | whitelist ${HOME}/.gtkrc-2.0 | 11 | include /etc/firejail/disable-passwdmgr.inc |
16 | whitelist ${HOME}/.kde4 | 12 | include /etc/firejail/disable-programs.inc |
17 | whitelist ${HOME}/.themes | ||
18 | whitelist ${HOME}/Images | ||
19 | whitelist /tmp/.X11-unix | ||
20 | # DBus has been forced to use an ordinary unix socket | ||
21 | whitelist /tmp/dbus_session_socket | ||
22 | include /etc/firejail/whitelist-common.inc | ||
23 | 13 | ||
24 | caps.drop all | 14 | caps.drop all |
25 | ipc-namespace | 15 | ipc-namespace |
@@ -29,9 +19,7 @@ noroot | |||
29 | seccomp | 19 | seccomp |
30 | shell none | 20 | shell none |
31 | 21 | ||
32 | # private-bin krita,dbus-launch | ||
33 | private-dev | 22 | private-dev |
34 | # private-etc fonts,passwd,alternatives,X11 | ||
35 | 23 | ||
36 | noexec /home | 24 | noexec /home |
37 | noexec /tmp | 25 | noexec /tmp |