aboutsummaryrefslogtreecommitdiffstats
path: root/etc/profile-a-l/email-common.profile
diff options
context:
space:
mode:
Diffstat (limited to 'etc/profile-a-l/email-common.profile')
-rw-r--r--etc/profile-a-l/email-common.profile25
1 files changed, 18 insertions, 7 deletions
diff --git a/etc/profile-a-l/email-common.profile b/etc/profile-a-l/email-common.profile
index df47f478d..6b55c2126 100644
--- a/etc/profile-a-l/email-common.profile
+++ b/etc/profile-a-l/email-common.profile
@@ -8,6 +8,7 @@ include email-common.local
8#include globals.local 8#include globals.local
9 9
10noblacklist ${HOME}/.gnupg 10noblacklist ${HOME}/.gnupg
11noblacklist ${HOME}/.mozilla
11noblacklist ${HOME}/.signature 12noblacklist ${HOME}/.signature
12# when storing mail outside the default ${HOME}/Mail path, 'noblacklist' the custom path in your email-common.local 13# when storing mail outside the default ${HOME}/Mail path, 'noblacklist' the custom path in your email-common.local
13# and 'blacklist' it in your disable-common.local too so it is kept hidden from other applications 14# and 'blacklist' it in your disable-common.local too so it is kept hidden from other applications
@@ -17,28 +18,34 @@ noblacklist ${DOCUMENTS}
17 18
18include disable-common.inc 19include disable-common.inc
19include disable-devel.inc 20include disable-devel.inc
21include disable-exec.inc
20include disable-interpreters.inc 22include disable-interpreters.inc
21include disable-passwdmgr.inc 23include disable-passwdmgr.inc
22include disable-programs.inc 24include disable-programs.inc
23include disable-xdg.inc 25include disable-xdg.inc
24 26
25whitelist ${DOCUMENTS}
26whitelist ${DOWNLOADS}
27mkfile ${HOME}/.config/mimeapps.list
28mkdir ${HOME}/.gnupg 27mkdir ${HOME}/.gnupg
28mkfile ${HOME}/.config/mimeapps.list
29mkfile ${HOME}/.signature 29mkfile ${HOME}/.signature
30whitelist ${HOME}/.config/mimeapps.list 30whitelist ${HOME}/.config/mimeapps.list
31whitelist ${HOME}/.mozilla/firefox/profiles.ini
31whitelist ${HOME}/.gnupg 32whitelist ${HOME}/.gnupg
32whitelist ${HOME}/.signature 33whitelist ${HOME}/.signature
34whitelist ${DOCUMENTS}
35whitelist ${DOWNLOADS}
33# when storing mail outside the default ${HOME}/Mail path, 'whitelist' the custom path in your email-common.local 36# when storing mail outside the default ${HOME}/Mail path, 'whitelist' the custom path in your email-common.local
34whitelist ${HOME}/Mail 37whitelist ${HOME}/Mail
38whitelist ${RUNUSER}/gnupg
35whitelist /usr/share/gnupg 39whitelist /usr/share/gnupg
36whitelist /usr/share/gnupg2 40whitelist /usr/share/gnupg2
37include whitelist-common.inc 41include whitelist-common.inc
42include whitelist-runuser-common.inc
38include whitelist-usr-share-common.inc 43include whitelist-usr-share-common.inc
39include whitelist-var-common.inc 44include whitelist-var-common.inc
40 45
46apparmor
41caps.drop all 47caps.drop all
48machine-id
42netfilter 49netfilter
43no3d 50no3d
44nodvd 51nodvd
@@ -51,22 +58,26 @@ nou2f
51novideo 58novideo
52protocol unix,inet,inet6 59protocol unix,inet,inet6
53seccomp 60seccomp
61seccomp.block-secondary
54shell none 62shell none
55tracelog 63tracelog
56 64
65# disable-mnt
57private-cache 66private-cache
58private-dev 67private-dev
68private-etc alternatives,ca-certificates,crypto-policies,dconf,fonts,gcrypt,gnupg,groups,gtk-2.0,gtk-3.0,hostname,hosts,hosts.conf,mailname,nsswitch.conf,passwd,pki,resolv.conf,selinux,ssl,xdg
59private-tmp 69private-tmp
60
61dbus-user none
62dbus-system none
63
64# encrypting and signing email 70# encrypting and signing email
65writable-run-user 71writable-run-user
66 72
73dbus-system none
74
67# If you want to read local mail stored in /var/mail, add the following to email-common.local: 75# If you want to read local mail stored in /var/mail, add the following to email-common.local:
68#noblacklist /var/mail 76#noblacklist /var/mail
69#noblacklist /var/spool/mail 77#noblacklist /var/spool/mail
70#whitelist /var/mail 78#whitelist /var/mail
71#whitelist /var/spool/mail 79#whitelist /var/spool/mail
72#writable-var 80#writable-var
81
82read-only ${HOME}/.mozilla/firefox/profiles.ini
83read-only ${HOME}/.signature
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-09-02 07:07:25 +0000