1 files changed, 37 insertions, 0 deletions
diff --git a/etc/profile-a-l/dnsmasq.profile b/etc/profile-a-l/dnsmasq.profile
new file mode 100644
index 000000000..6db71bd49
--- /dev/null
+++ b/etc/profile-a-l/dnsmasq.profile
@@ -0,0 +1,37 @@
+# Firejail profile for dnsmasq
+# Description: Small caching DNS proxy and DHCP/TFTP server
+# This file is overwritten after every install/update
+quiet
+# Persistent local customizations
+include dnsmasq.local
+# Persistent global definitions
+include globals.local
+noblacklist /sbin
+noblacklist /usr/sbin
+blacklist /tmp/.X11-unix
+blacklist ${RUNUSER}/wayland-*
+include disable-common.inc
+include disable-devel.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+caps.keep net_admin,net_bind_service,net_raw,setgid,setuid
+no3d
+nodvd
+nonewprivs
+nosound
+notv
+nou2f
+novideo
+protocol unix,inet,inet6,netlink
+seccomp
+disable-mnt
+private
+private-cache
+private-dev

diff --git a/etc/profile-a-l/dnsmasq.profile b/etc/profile-a-l/dnsmasq.profile new file mode 100644 index 000000000..6db71bd49 --- /dev/null +++ b/etc/profile-a-l/dnsmasq.profile
@@ -0,0 +1,37 @@
	1	# Firejail profile for dnsmasq
	2	# Description: Small caching DNS proxy and DHCP/TFTP server
	3	# This file is overwritten after every install/update
	4	quiet
	5	# Persistent local customizations
	6	include dnsmasq.local
	7	# Persistent global definitions
	8	include globals.local
	9
	10	noblacklist /sbin
	11	noblacklist /usr/sbin
	12
	13	blacklist /tmp/.X11-unix
	14	blacklist ${RUNUSER}/wayland-*
	15
	16	include disable-common.inc
	17	include disable-devel.inc
	18	include disable-interpreters.inc
	19	include disable-passwdmgr.inc
	20	include disable-programs.inc
	21	include disable-xdg.inc
	22
	23	caps.keep net_admin,net_bind_service,net_raw,setgid,setuid
	24	no3d
	25	nodvd
	26	nonewprivs
	27	nosound
	28	notv
	29	nou2f
	30	novideo
	31	protocol unix,inet,inet6,netlink
	32	seccomp
	33
	34	disable-mnt
	35	private
	36	private-cache
	37	private-dev