1 files changed, 16 insertions, 21 deletions
diff --git a/etc/liferea.profile b/etc/liferea.profile
index f11137cdd..f9c050acb 100644
--- a/etc/liferea.profile
+++ b/etc/liferea.profile
@@ -1,47 +1,42 @@
-# Persistent global definitions go here
+# Firejail profile for liferea
-include /etc/firejail/global.local
+# This file is overwritten after every install/update
+# Persistent local customizations
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
 include /etc/firejail/liferea.local
+# Persistent global definitions
+include /etc/firejail/globals.local
-#######################
+noblacklist ~/.cache/liferea
-# profile for Liferea #
-#######################
 noblacklist ~/.config/liferea
-mkdir ~/.config/liferea
-whitelist ~/.config/liferea
 noblacklist ~/.local/share/liferea
-mkdir ~/.local/share/liferea
-whitelist ~/.local/share/liferea
-noblacklist ~/.cache/liferea
-mkdir ~/.cache/liferea
-whitelist ~/.cache/liferea
 include /etc/firejail/disable-common.inc
 include /etc/firejail/disable-devel.inc
 include /etc/firejail/disable-passwdmgr.inc
 include /etc/firejail/disable-programs.inc
+mkdir ~/.cache/liferea
+mkdir ~/.config/liferea
+mkdir ~/.local/share/liferea
+whitelist ~/.cache/liferea
+whitelist ~/.config/liferea
+whitelist ~/.local/share/liferea
 include /etc/firejail/whitelist-common.inc
 caps.drop all
-#ipc-namespace
 netfilter
-#no3d
+# no3d
 nogroups
 nonewprivs
 noroot
-#nosound
+# nosound
 novideo
 protocol unix,inet,inet6
 seccomp
 shell none
+disable-mnt
 private-dev
 private-tmp
-disable-mnt
 noexec ${HOME}
 noexec /tmp

diff --git a/etc/liferea.profile b/etc/liferea.profile index f11137cdd..f9c050acb 100644 --- a/etc/liferea.profile +++ b/etc/liferea.profile
@@ -1,47 +1,42 @@
1	# Persistent global definitions go here	1	# Firejail profile for liferea
2	include /etc/firejail/global.local	2	# This file is overwritten after every install/update
3		3	# Persistent local customizations
4	# This file is overwritten during software install.
5	# Persistent customizations should go in a .local file.
6	include /etc/firejail/liferea.local	4	include /etc/firejail/liferea.local
		5	# Persistent global definitions
		6	include /etc/firejail/globals.local
7		7
8	#######################	8	noblacklist ~/.cache/liferea
9	# profile for Liferea #
10	#######################
11	noblacklist ~/.config/liferea	9	noblacklist ~/.config/liferea
12	mkdir ~/.config/liferea
13	whitelist ~/.config/liferea
14
15	noblacklist ~/.local/share/liferea	10	noblacklist ~/.local/share/liferea
16	mkdir ~/.local/share/liferea
17	whitelist ~/.local/share/liferea
18
19	noblacklist ~/.cache/liferea
20	mkdir ~/.cache/liferea
21	whitelist ~/.cache/liferea
22		11
23	include /etc/firejail/disable-common.inc	12	include /etc/firejail/disable-common.inc
24	include /etc/firejail/disable-devel.inc	13	include /etc/firejail/disable-devel.inc
25	include /etc/firejail/disable-passwdmgr.inc	14	include /etc/firejail/disable-passwdmgr.inc
26	include /etc/firejail/disable-programs.inc	15	include /etc/firejail/disable-programs.inc
		16
		17	mkdir ~/.cache/liferea
		18	mkdir ~/.config/liferea
		19	mkdir ~/.local/share/liferea
		20	whitelist ~/.cache/liferea
		21	whitelist ~/.config/liferea
		22	whitelist ~/.local/share/liferea
27	include /etc/firejail/whitelist-common.inc	23	include /etc/firejail/whitelist-common.inc
28		24
29	caps.drop all	25	caps.drop all
30	#ipc-namespace
31	netfilter	26	netfilter
32	#no3d	27	# no3d
33	nogroups	28	nogroups
34	nonewprivs	29	nonewprivs
35	noroot	30	noroot
36	#nosound	31	# nosound
37	novideo	32	novideo
38	protocol unix,inet,inet6	33	protocol unix,inet,inet6
39	seccomp	34	seccomp
40	shell none	35	shell none
41		36
		37	disable-mnt
42	private-dev	38	private-dev
43	private-tmp	39	private-tmp
44	disable-mnt
45		40
46	noexec ${HOME}	41	noexec ${HOME}
47	noexec /tmp	42	noexec /tmp