diff options
Diffstat (limited to 'etc/wesnoth.profile')
-rw-r--r-- | etc/wesnoth.profile | 31 |
1 files changed, 15 insertions, 16 deletions
diff --git a/etc/wesnoth.profile b/etc/wesnoth.profile index a13f80bb6..9798e0ace 100644 --- a/etc/wesnoth.profile +++ b/etc/wesnoth.profile | |||
@@ -1,19 +1,26 @@ | |||
1 | # Persistent global definitions go here | 1 | # Firejail profile for wesnoth |
2 | include /etc/firejail/globals.local | 2 | # This file is overwritten after every install/update |
3 | 3 | # Persistent local customizations | |
4 | # This file is overwritten during software install. | ||
5 | # Persistent customizations should go in a .local file. | ||
6 | include /etc/firejail/wesnoth.local | 4 | include /etc/firejail/wesnoth.local |
5 | # Persistent global definitions | ||
6 | include /etc/firejail/globals.local | ||
7 | 7 | ||
8 | # Whitelist-based profile for "Battle for Wesnoth" (game). | ||
9 | noblacklist ${HOME}/.config/wesnoth | ||
10 | noblacklist ${HOME}/.cache/wesnoth | 8 | noblacklist ${HOME}/.cache/wesnoth |
9 | noblacklist ${HOME}/.config/wesnoth | ||
11 | noblacklist ${HOME}/.local/share/wesnoth | 10 | noblacklist ${HOME}/.local/share/wesnoth |
12 | 11 | ||
13 | include /etc/firejail/disable-common.inc | 12 | include /etc/firejail/disable-common.inc |
14 | include /etc/firejail/disable-programs.inc | ||
15 | include /etc/firejail/disable-devel.inc | 13 | include /etc/firejail/disable-devel.inc |
16 | include /etc/firejail/disable-passwdmgr.inc | 14 | include /etc/firejail/disable-passwdmgr.inc |
15 | include /etc/firejail/disable-programs.inc | ||
16 | |||
17 | mkdir ${HOME}/.cache/wesnoth | ||
18 | mkdir ${HOME}/.config/wesnoth | ||
19 | mkdir ${HOME}/.local/share/wesnoth | ||
20 | whitelist ${HOME}/.cache/wesnoth | ||
21 | whitelist ${HOME}/.config/wesnoth | ||
22 | whitelist ${HOME}/.local/share/wesnoth | ||
23 | include /etc/firejail/whitelist-common.inc | ||
17 | 24 | ||
18 | caps.drop all | 25 | caps.drop all |
19 | nonewprivs | 26 | nonewprivs |
@@ -23,11 +30,3 @@ seccomp | |||
23 | 30 | ||
24 | private-dev | 31 | private-dev |
25 | private-tmp | 32 | private-tmp |
26 | |||
27 | mkdir ${HOME}/.local/share/wesnoth | ||
28 | mkdir ${HOME}/.config/wesnoth | ||
29 | mkdir ${HOME}/.cache/wesnoth | ||
30 | whitelist ${HOME}/.local/share/wesnoth | ||
31 | whitelist ${HOME}/.config/wesnoth | ||
32 | whitelist ${HOME}/.cache/wesnoth | ||
33 | include /etc/firejail/whitelist-common.inc | ||