diff options
Diffstat (limited to 'etc/stellarium.profile')
-rw-r--r-- | etc/stellarium.profile | 23 |
1 files changed, 12 insertions, 11 deletions
diff --git a/etc/stellarium.profile b/etc/stellarium.profile index 148ec949d..d0c1326b3 100644 --- a/etc/stellarium.profile +++ b/etc/stellarium.profile | |||
@@ -1,28 +1,29 @@ | |||
1 | # Firejail profile for Stellarium. | 1 | # Firejail profile for Stellarium. |
2 | |||
3 | # Noblacklist | ||
4 | noblacklist ~/.stellarium | 2 | noblacklist ~/.stellarium |
5 | noblacklist ~/.config/stellarium | 3 | noblacklist ~/.config/stellarium |
6 | |||
7 | # Include | ||
8 | include /etc/firejail/disable-common.inc | 4 | include /etc/firejail/disable-common.inc |
9 | include /etc/firejail/disable-devel.inc | 5 | include /etc/firejail/disable-devel.inc |
10 | include /etc/firejail/disable-passwdmgr.inc | 6 | include /etc/firejail/disable-passwdmgr.inc |
11 | include /etc/firejail/disable-programs.inc | 7 | include /etc/firejail/disable-programs.inc |
12 | 8 | ||
13 | # Call these options | 9 | # Whitelist |
10 | mkdir ~/.stellarium | ||
11 | whitelist ~/.stellarium | ||
12 | mkdir ~/.config | ||
13 | mkdir ~/.config/stellarium | ||
14 | whitelist ~/.config/stellarium | ||
15 | |||
14 | caps.drop all | 16 | caps.drop all |
15 | netfilter | 17 | netfilter |
18 | nogroups | ||
16 | nonewprivs | 19 | nonewprivs |
17 | noroot | 20 | noroot |
21 | nosound | ||
18 | protocol unix,inet,inet6,netlink | 22 | protocol unix,inet,inet6,netlink |
19 | seccomp | 23 | seccomp |
24 | shell none | ||
20 | tracelog | 25 | tracelog |
21 | 26 | ||
22 | # Whitelist | 27 | private-bin stellarium |
23 | mkdir ~/.stellarium | 28 | private-dev |
24 | whitelist ~/.stellarium | ||
25 | 29 | ||
26 | mkdir ~/.config | ||
27 | mkdir ~/.config/stellarium | ||
28 | whitelist ~/.config/stellarium | ||