1 files changed, 55 insertions, 0 deletions
diff --git a/etc/profile-a-l/alienblaster.profile b/etc/profile-a-l/alienblaster.profile
new file mode 100644
index 000000000..0e0478a49
--- /dev/null
+++ b/etc/profile-a-l/alienblaster.profile
@@ -0,0 +1,55 @@
+# Firejail profile for alienblaster
+# Persistent local customizations
+include alienblaster.local
+# Persistent global definitions
+include globals.local
+noblacklist ${HOME}/.alienblaster
+noblacklist ${HOME}/.alienblaster_highscore
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-programs.inc
+include disable-xdg.inc
+mkfile ${HOME}/.alienblaster_highscore
+whitelist ${HOME}/.alienblaster_highscore
+mkdir ${HOME}/.alienblaster
+whitelist ${HOME}/.alienblaster
+include whitelist-common.inc
+include whitelist-run-common.inc
+whitelist ${RUNUSER}/pulse
+include whitelist-runuser-common.inc
+whitelist /usr/share/games/alienblaster
+whitelist /usr/share/timidity
+include whitelist-usr-share-common.inc
+include whitelist-var-common.inc
+apparmor
+caps.drop all
+ipc-namespace
+netfilter
+net none
+nodvd
+noinput
+nonewprivs
+noroot
+notv
+nou2f
+novideo
+protocol unix
+seccomp
+tracelog
+disable-mnt
+private-dev
+private-etc @x11,@sound,@games
+private-tmp
+dbus-user none
+dbus-system none
+memory-deny-write-execute
+restrict-namespaces

diff --git a/etc/profile-a-l/alienblaster.profile b/etc/profile-a-l/alienblaster.profile new file mode 100644 index 000000000..0e0478a49 --- /dev/null +++ b/etc/profile-a-l/alienblaster.profile
@@ -0,0 +1,55 @@
	1	# Firejail profile for alienblaster
	2	# Persistent local customizations
	3	include alienblaster.local
	4	# Persistent global definitions
	5	include globals.local
	6
	7	noblacklist ${HOME}/.alienblaster
	8	noblacklist ${HOME}/.alienblaster_highscore
	9
	10	include disable-common.inc
	11	include disable-devel.inc
	12	include disable-exec.inc
	13	include disable-interpreters.inc
	14	include disable-programs.inc
	15	include disable-xdg.inc
	16
	17	mkfile ${HOME}/.alienblaster_highscore
	18	whitelist ${HOME}/.alienblaster_highscore
	19	mkdir ${HOME}/.alienblaster
	20	whitelist ${HOME}/.alienblaster
	21	include whitelist-common.inc
	22	include whitelist-run-common.inc
	23	whitelist ${RUNUSER}/pulse
	24	include whitelist-runuser-common.inc
	25	whitelist /usr/share/games/alienblaster
	26	whitelist /usr/share/timidity
	27	include whitelist-usr-share-common.inc
	28	include whitelist-var-common.inc
	29
	30	apparmor
	31	caps.drop all
	32	ipc-namespace
	33	netfilter
	34	net none
	35	nodvd
	36	noinput
	37	nonewprivs
	38	noroot
	39	notv
	40	nou2f
	41	novideo
	42	protocol unix
	43	seccomp
	44	tracelog
	45
	46	disable-mnt
	47	private-dev
	48	private-etc @x11,@sound,@games
	49	private-tmp
	50
	51	dbus-user none
	52	dbus-system none
	53
	54	memory-deny-write-execute
	55	restrict-namespaces