diff options
Diffstat (limited to 'etc/profile-a-l/email-common.profile')
-rw-r--r-- | etc/profile-a-l/email-common.profile | 25 |
1 files changed, 18 insertions, 7 deletions
diff --git a/etc/profile-a-l/email-common.profile b/etc/profile-a-l/email-common.profile index df47f478d..6b55c2126 100644 --- a/etc/profile-a-l/email-common.profile +++ b/etc/profile-a-l/email-common.profile | |||
@@ -8,6 +8,7 @@ include email-common.local | |||
8 | #include globals.local | 8 | #include globals.local |
9 | 9 | ||
10 | noblacklist ${HOME}/.gnupg | 10 | noblacklist ${HOME}/.gnupg |
11 | noblacklist ${HOME}/.mozilla | ||
11 | noblacklist ${HOME}/.signature | 12 | noblacklist ${HOME}/.signature |
12 | # when storing mail outside the default ${HOME}/Mail path, 'noblacklist' the custom path in your email-common.local | 13 | # when storing mail outside the default ${HOME}/Mail path, 'noblacklist' the custom path in your email-common.local |
13 | # and 'blacklist' it in your disable-common.local too so it is kept hidden from other applications | 14 | # and 'blacklist' it in your disable-common.local too so it is kept hidden from other applications |
@@ -17,28 +18,34 @@ noblacklist ${DOCUMENTS} | |||
17 | 18 | ||
18 | include disable-common.inc | 19 | include disable-common.inc |
19 | include disable-devel.inc | 20 | include disable-devel.inc |
21 | include disable-exec.inc | ||
20 | include disable-interpreters.inc | 22 | include disable-interpreters.inc |
21 | include disable-passwdmgr.inc | 23 | include disable-passwdmgr.inc |
22 | include disable-programs.inc | 24 | include disable-programs.inc |
23 | include disable-xdg.inc | 25 | include disable-xdg.inc |
24 | 26 | ||
25 | whitelist ${DOCUMENTS} | ||
26 | whitelist ${DOWNLOADS} | ||
27 | mkfile ${HOME}/.config/mimeapps.list | ||
28 | mkdir ${HOME}/.gnupg | 27 | mkdir ${HOME}/.gnupg |
28 | mkfile ${HOME}/.config/mimeapps.list | ||
29 | mkfile ${HOME}/.signature | 29 | mkfile ${HOME}/.signature |
30 | whitelist ${HOME}/.config/mimeapps.list | 30 | whitelist ${HOME}/.config/mimeapps.list |
31 | whitelist ${HOME}/.mozilla/firefox/profiles.ini | ||
31 | whitelist ${HOME}/.gnupg | 32 | whitelist ${HOME}/.gnupg |
32 | whitelist ${HOME}/.signature | 33 | whitelist ${HOME}/.signature |
34 | whitelist ${DOCUMENTS} | ||
35 | whitelist ${DOWNLOADS} | ||
33 | # when storing mail outside the default ${HOME}/Mail path, 'whitelist' the custom path in your email-common.local | 36 | # when storing mail outside the default ${HOME}/Mail path, 'whitelist' the custom path in your email-common.local |
34 | whitelist ${HOME}/Mail | 37 | whitelist ${HOME}/Mail |
38 | whitelist ${RUNUSER}/gnupg | ||
35 | whitelist /usr/share/gnupg | 39 | whitelist /usr/share/gnupg |
36 | whitelist /usr/share/gnupg2 | 40 | whitelist /usr/share/gnupg2 |
37 | include whitelist-common.inc | 41 | include whitelist-common.inc |
42 | include whitelist-runuser-common.inc | ||
38 | include whitelist-usr-share-common.inc | 43 | include whitelist-usr-share-common.inc |
39 | include whitelist-var-common.inc | 44 | include whitelist-var-common.inc |
40 | 45 | ||
46 | apparmor | ||
41 | caps.drop all | 47 | caps.drop all |
48 | machine-id | ||
42 | netfilter | 49 | netfilter |
43 | no3d | 50 | no3d |
44 | nodvd | 51 | nodvd |
@@ -51,22 +58,26 @@ nou2f | |||
51 | novideo | 58 | novideo |
52 | protocol unix,inet,inet6 | 59 | protocol unix,inet,inet6 |
53 | seccomp | 60 | seccomp |
61 | seccomp.block-secondary | ||
54 | shell none | 62 | shell none |
55 | tracelog | 63 | tracelog |
56 | 64 | ||
65 | # disable-mnt | ||
57 | private-cache | 66 | private-cache |
58 | private-dev | 67 | private-dev |
68 | private-etc alternatives,ca-certificates,crypto-policies,dconf,fonts,gcrypt,gnupg,groups,gtk-2.0,gtk-3.0,hostname,hosts,hosts.conf,mailname,nsswitch.conf,passwd,pki,resolv.conf,selinux,ssl,xdg | ||
59 | private-tmp | 69 | private-tmp |
60 | |||
61 | dbus-user none | ||
62 | dbus-system none | ||
63 | |||
64 | # encrypting and signing email | 70 | # encrypting and signing email |
65 | writable-run-user | 71 | writable-run-user |
66 | 72 | ||
73 | dbus-system none | ||
74 | |||
67 | # If you want to read local mail stored in /var/mail, add the following to email-common.local: | 75 | # If you want to read local mail stored in /var/mail, add the following to email-common.local: |
68 | #noblacklist /var/mail | 76 | #noblacklist /var/mail |
69 | #noblacklist /var/spool/mail | 77 | #noblacklist /var/spool/mail |
70 | #whitelist /var/mail | 78 | #whitelist /var/mail |
71 | #whitelist /var/spool/mail | 79 | #whitelist /var/spool/mail |
72 | #writable-var | 80 | #writable-var |
81 | |||
82 | read-only ${HOME}/.mozilla/firefox/profiles.ini | ||
83 | read-only ${HOME}/.signature | ||