aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
Diffstat (limited to 'etc')
-rw-r--r--etc/libreoffice.profile12
-rw-r--r--etc/rhythmbox.profile3
-rw-r--r--etc/vlc.profile2
-rw-r--r--etc/webstorm.profile9
4 files changed, 16 insertions, 10 deletions
diff --git a/etc/libreoffice.profile b/etc/libreoffice.profile
index 4b3eb1ac7..18fcc59c6 100644
--- a/etc/libreoffice.profile
+++ b/etc/libreoffice.profile
@@ -23,20 +23,22 @@ include /etc/firejail/disable-programs.inc
23 23
24include /etc/firejail/whitelist-var-common.inc 24include /etc/firejail/whitelist-var-common.inc
25 25
26apparmor 26# Ubuntu 18.04 uses its own apparmor profile
27# uncomment the next line if you are not on Ubuntu
28#apparmor
27caps.drop all 29caps.drop all
28machine-id 30machine-id
29netfilter 31netfilter
30nodbus 32nodbus
31nodvd 33nodvd
32nogroups 34nogroups
33nonewprivs 35#nonewprivs - fix for Ubuntu 18.04/Debian 10
34noroot 36noroot
35notv 37notv
36protocol unix,inet,inet6 38#protocol unix,inet,inet6 - fix for Ubuntu 18.04/Debian 10
37seccomp 39#seccomp - fix for Ubuntu 18.04/Debian 10
38shell none 40shell none
39tracelog 41#tracelog - problems reported by Ubuntu 18.04 apparmor profile in /var/log/syslog
40 42
41private-dev 43private-dev
42private-tmp 44private-tmp
diff --git a/etc/rhythmbox.profile b/etc/rhythmbox.profile
index 38ccb886f..57e1ce5f0 100644
--- a/etc/rhythmbox.profile
+++ b/etc/rhythmbox.profile
@@ -8,7 +8,8 @@ include /etc/firejail/globals.local
8 8
9include /etc/firejail/disable-common.inc 9include /etc/firejail/disable-common.inc
10include /etc/firejail/disable-devel.inc 10include /etc/firejail/disable-devel.inc
11include /etc/firejail/disable-interpreters.inc 11# rhythmbox is using Python
12#include /etc/firejail/disable-interpreters.inc
12include /etc/firejail/disable-passwdmgr.inc 13include /etc/firejail/disable-passwdmgr.inc
13include /etc/firejail/disable-programs.inc 14include /etc/firejail/disable-programs.inc
14 15
diff --git a/etc/vlc.profile b/etc/vlc.profile
index 6b0bee7bd..9ccbb7310 100644
--- a/etc/vlc.profile
+++ b/etc/vlc.profile
@@ -17,7 +17,7 @@ include /etc/firejail/disable-programs.inc
17 17
18include /etc/firejail/whitelist-var-common.inc 18include /etc/firejail/whitelist-var-common.inc
19 19
20apparmor 20#apparmor - on Ubuntu 18.04 it refuses to start without dbus access
21caps.drop all 21caps.drop all
22netfilter 22netfilter
23# nodbus - problems with KDE 23# nodbus - problems with KDE
diff --git a/etc/webstorm.profile b/etc/webstorm.profile
index 6da71224f..93bcb50bb 100644
--- a/etc/webstorm.profile
+++ b/etc/webstorm.profile
@@ -6,12 +6,17 @@ include /etc/firejail/webstorm.local
6include /etc/firejail/globals.local 6include /etc/firejail/globals.local
7 7
8noblacklist ${HOME}/.WebStorm* 8noblacklist ${HOME}/.WebStorm*
9noblacklist ${HOME}/.android
9noblacklist ${HOME}/.gitconfig 10noblacklist ${HOME}/.gitconfig
11noblacklist ${HOME}/.gradle
10noblacklist ${HOME}/.java 12noblacklist ${HOME}/.java
11noblacklist ${HOME}/.local/share/JetBrains 13noblacklist ${HOME}/.local/share/JetBrains
12noblacklist ${HOME}/.ssh 14noblacklist ${HOME}/.ssh
13noblacklist ${HOME}/.tooling 15noblacklist ${HOME}/.tooling
14 16
17noblacklist ${PATH}/node
18noblacklist ${HOME}/.nvm
19
15include /etc/firejail/disable-common.inc 20include /etc/firejail/disable-common.inc
16include /etc/firejail/disable-passwdmgr.inc 21include /etc/firejail/disable-passwdmgr.inc
17include /etc/firejail/disable-programs.inc 22include /etc/firejail/disable-programs.inc
@@ -31,6 +36,4 @@ seccomp
31shell none 36shell none
32 37
33private-dev 38private-dev
34# private-tmp 39private-tmp
35
36noexec /tmp
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-09-06 02:38:35 +0000