aboutsummaryrefslogtreecommitdiffstats
path: root/etc/palemoon.profile
diff options
context:
space:
mode:
Diffstat (limited to 'etc/palemoon.profile')
-rw-r--r--etc/palemoon.profile34
1 files changed, 17 insertions, 17 deletions
diff --git a/etc/palemoon.profile b/etc/palemoon.profile
index fc4ea453b..71deec6bc 100644
--- a/etc/palemoon.profile
+++ b/etc/palemoon.profile
@@ -1,31 +1,30 @@
1# Firejail profile for Pale Moon 1# Firejail profile for Pale Moon
2
3# Noblacklists
4noblacklist ~/.moonchild productions/pale moon 2noblacklist ~/.moonchild productions/pale moon
5noblacklist ~/.cache/moonchild productions/pale moon 3noblacklist ~/.cache/moonchild productions/pale moon
6
7# Included profiles
8include /etc/firejail/disable-common.inc 4include /etc/firejail/disable-common.inc
9include /etc/firejail/disable-programs.inc 5include /etc/firejail/disable-programs.inc
10include /etc/firejail/disable-devel.inc 6include /etc/firejail/disable-devel.inc
11include /etc/firejail/whitelist-common.inc 7include /etc/firejail/whitelist-common.inc
12 8
13# Options
14caps.drop all
15seccomp
16protocol unix,inet,inet6,netlink
17netfilter
18tracelog
19noroot
20
21whitelist ${DOWNLOADS} 9whitelist ${DOWNLOADS}
22mkdir ~/.moonchild productions 10mkdir ~/.moonchild productions
23whitelist ~/.moonchild productions 11whitelist ~/.moonchild productions
24mkdir ~/.cache
25mkdir ~/.cache/moonchild productions
26mkdir ~/.cache/moonchild productions/pale moon 12mkdir ~/.cache/moonchild productions/pale moon
27whitelist ~/.cache/moonchild productions/pale moon 13whitelist ~/.cache/moonchild productions/pale moon
28 14
15caps.drop all
16netfilter
17nogroups
18nonewprivs
19noroot
20protocol unix,inet,inet6,netlink
21seccomp
22shell none
23tracelog
24
25private-bin palemoon
26private-tmp
27
29# These are uncommented in the Firefox profile. If you run into trouble you may 28# These are uncommented in the Firefox profile. If you run into trouble you may
30# want to uncomment (some of) them. 29# want to uncomment (some of) them.
31#whitelist ~/dwhelper 30#whitelist ~/dwhelper
@@ -40,9 +39,9 @@ whitelist ~/.cache/moonchild productions/pale moon
40#whitelist ~/.pki 39#whitelist ~/.pki
41 40
42# For silverlight 41# For silverlight
43#whitelist ~/.wine-pipelight 42#whitelist ~/.wine-pipelight
44#whitelist ~/.wine-pipelight64 43#whitelist ~/.wine-pipelight64
45#whitelist ~/.config/pipelight-widevine 44#whitelist ~/.config/pipelight-widevine
46#whitelist ~/.config/pipelight-silverlight5.1 45#whitelist ~/.config/pipelight-silverlight5.1
47 46
48 47
@@ -55,3 +54,4 @@ whitelist ~/.config/lastpass
55 54
56# experimental features 55# experimental features
57#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse 56#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse
57#private-dev (disabled for now as it will interfere with webcam use in palemoon)
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-08-22 14:04:54 +0000