diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/abrowser.profile | 3 | ||||
-rw-r--r-- | etc/cliqz.profile | 3 | ||||
-rw-r--r-- | etc/cyberfox.profile | 3 | ||||
-rw-r--r-- | etc/firefox-common.profile | 2 | ||||
-rw-r--r-- | etc/firefox.profile | 6 | ||||
-rw-r--r-- | etc/icecat.profile | 3 | ||||
-rw-r--r-- | etc/iceweasel.profile | 2 | ||||
-rw-r--r-- | etc/palemoon.profile | 7 | ||||
-rw-r--r-- | etc/waterfox.profile | 5 |
9 files changed, 22 insertions, 12 deletions
diff --git a/etc/abrowser.profile b/etc/abrowser.profile index 01f60b559..d757d6f49 100644 --- a/etc/abrowser.profile +++ b/etc/abrowser.profile | |||
@@ -13,7 +13,8 @@ mkdir ${HOME}/.mozilla | |||
13 | whitelist ${HOME}/.cache/mozilla/abrowser | 13 | whitelist ${HOME}/.cache/mozilla/abrowser |
14 | whitelist ${HOME}/.mozilla | 14 | whitelist ${HOME}/.mozilla |
15 | 15 | ||
16 | # private-etc ca-certificates,ssl,machine-id,dconf,selinux,passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,abrowser,firefox,mime.types,mailcap,asound.conf,pulse,pki,crypto-policies | 16 | # private-etc must first be enabled in firefox-common.profile |
17 | #private-etc abrowser | ||
17 | 18 | ||
18 | 19 | ||
19 | # Redirect | 20 | # Redirect |
diff --git a/etc/cliqz.profile b/etc/cliqz.profile index b4e299337..4ff96311d 100644 --- a/etc/cliqz.profile +++ b/etc/cliqz.profile | |||
@@ -13,7 +13,8 @@ mkdir ${HOME}/.config/cliqz | |||
13 | whitelist ${HOME}/.cache/cliqz | 13 | whitelist ${HOME}/.cache/cliqz |
14 | whitelist ${HOME}/.config/cliqz | 14 | whitelist ${HOME}/.config/cliqz |
15 | 15 | ||
16 | # private-etc ca-certificates,ssl,machine-id,dconf,selinux,passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,firefox,cliqz,mime.types,mailcap,asound.conf,pulse,pki,crypto-policies | 16 | # private-etc must first be enabled in firefox-common.profile |
17 | #private-etc cliqz | ||
17 | 18 | ||
18 | # Redirect | 19 | # Redirect |
19 | include /etc/firejail/firefox-common.profile | 20 | include /etc/firejail/firefox-common.profile |
diff --git a/etc/cyberfox.profile b/etc/cyberfox.profile index be9e62123..ce51906ba 100644 --- a/etc/cyberfox.profile +++ b/etc/cyberfox.profile | |||
@@ -14,7 +14,8 @@ whitelist ${HOME}/.8pecxstudios | |||
14 | whitelist ${HOME}/.cache/8pecxstudios | 14 | whitelist ${HOME}/.cache/8pecxstudios |
15 | 15 | ||
16 | # private-bin cyberfox,which,sh,dbus-launch,dbus-send,env | 16 | # private-bin cyberfox,which,sh,dbus-launch,dbus-send,env |
17 | # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,cyberfox,mime.types,mailcap,asound.conf,pulse | 17 | # private-etc must first be enabled in firefox-common.profile |
18 | #private-etc cyberfox | ||
18 | 19 | ||
19 | # Redirect | 20 | # Redirect |
20 | include /etc/firejail/firefox-common.profile | 21 | include /etc/firejail/firefox-common.profile |
diff --git a/etc/firefox-common.profile b/etc/firefox-common.profile index 33d522353..0c4271edc 100644 --- a/etc/firefox-common.profile +++ b/etc/firefox-common.profile | |||
@@ -36,6 +36,8 @@ tracelog | |||
36 | 36 | ||
37 | disable-mnt | 37 | disable-mnt |
38 | private-dev | 38 | private-dev |
39 | # private-etc below works fine on most distributions. There are some problems on CentOS. | ||
40 | #private-etc ca-certificates,ssl,machine-id,dconf,selinux,passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,mime.types,mailcap,asound.conf,pulse,pki,crypto-policies | ||
39 | private-tmp | 41 | private-tmp |
40 | 42 | ||
41 | noexec ${HOME} | 43 | noexec ${HOME} |
diff --git a/etc/firefox.profile b/etc/firefox.profile index 15ca094f1..0ab6a6141 100644 --- a/etc/firefox.profile +++ b/etc/firefox.profile | |||
@@ -14,9 +14,9 @@ whitelist ${HOME}/.cache/mozilla/firefox | |||
14 | whitelist ${HOME}/.mozilla | 14 | whitelist ${HOME}/.mozilla |
15 | 15 | ||
16 | # firefox requires a shell to launch on Arch. | 16 | # firefox requires a shell to launch on Arch. |
17 | # private-bin firefox,which,sh,dbus-launch,dbus-send,env,bash | 17 | #private-bin firefox,which,sh,dbus-launch,dbus-send,env,bash |
18 | # private-etc below works fine on most distributions. There are some problems on CentOS. | 18 | # private-etc must first be enabled in firefox-common.profile |
19 | # private-etc iceweasel,ca-certificates,ssl,machine-id,dconf,selinux,passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,firefox,mime.types,mailcap,asound.conf,pulse,pki,crypto-policies | 19 | #private-etc firefox |
20 | 20 | ||
21 | # Redirect | 21 | # Redirect |
22 | include /etc/firejail/firefox-common.profile | 22 | include /etc/firejail/firefox-common.profile |
diff --git a/etc/icecat.profile b/etc/icecat.profile index 1470d4b12..42e762c21 100644 --- a/etc/icecat.profile +++ b/etc/icecat.profile | |||
@@ -13,7 +13,8 @@ mkdir ${HOME}/.mozilla | |||
13 | whitelist ${HOME}/.cache/mozilla/icecat | 13 | whitelist ${HOME}/.cache/mozilla/icecat |
14 | whitelist ${HOME}/.mozilla | 14 | whitelist ${HOME}/.mozilla |
15 | 15 | ||
16 | # private-etc icecat,ca-certificates,ssl,machine-id,dconf,selinux,passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,firefox,mime.types,mailcap,asound.conf,pulse,pki,crypto-policies | 16 | # private-etc must first be enabled in firefox-common.profile |
17 | #private-etc icecat | ||
17 | 18 | ||
18 | # Redirect | 19 | # Redirect |
19 | include /etc/firejail/firefox-common.profile | 20 | include /etc/firejail/firefox-common.profile |
diff --git a/etc/iceweasel.profile b/etc/iceweasel.profile index f6b57dde0..51f15aa1b 100644 --- a/etc/iceweasel.profile +++ b/etc/iceweasel.profile | |||
@@ -5,6 +5,8 @@ include /etc/firejail/iceweasel.local | |||
5 | # Persistent global definitions | 5 | # Persistent global definitions |
6 | include /etc/firejail/globals.local | 6 | include /etc/firejail/globals.local |
7 | 7 | ||
8 | # private-etc must first be enabled in firefox-common.profile | ||
9 | #private-etc iceweasel | ||
8 | 10 | ||
9 | # Redirect | 11 | # Redirect |
10 | include /etc/firejail/firefox.profile | 12 | include /etc/firejail/firefox.profile |
diff --git a/etc/palemoon.profile b/etc/palemoon.profile index e59f20e9d..ff7087e55 100644 --- a/etc/palemoon.profile +++ b/etc/palemoon.profile | |||
@@ -13,9 +13,10 @@ mkdir ${HOME}/.moonchild productions | |||
13 | whitelist ${HOME}/.cache/moonchild productions/pale moon | 13 | whitelist ${HOME}/.cache/moonchild productions/pale moon |
14 | whitelist ${HOME}/.moonchild productions | 14 | whitelist ${HOME}/.moonchild productions |
15 | 15 | ||
16 | # private-bin palemoon | 16 | #private-bin palemoon |
17 | # private-etc ca-certificates,ssl,machine-id,dconf,selinux,passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,palemoon,mime.types,mailcap,asound.conf,pulse,pki,crypto-policies | 17 | # private-etc must first be enabled in firefox-common.profile |
18 | # private-opt palemoon | 18 | #private-etc palemoon |
19 | #private-opt palemoon | ||
19 | 20 | ||
20 | # Redirect | 21 | # Redirect |
21 | include /etc/firejail/firefox-common.profile | 22 | include /etc/firejail/firefox-common.profile |
diff --git a/etc/waterfox.profile b/etc/waterfox.profile index 521295dfa..fdd299bbf 100644 --- a/etc/waterfox.profile +++ b/etc/waterfox.profile | |||
@@ -20,8 +20,9 @@ whitelist ${HOME}/.mozilla | |||
20 | whitelist ${HOME}/.waterfox | 20 | whitelist ${HOME}/.waterfox |
21 | 21 | ||
22 | # waterfox requires a shell to launch on Arch. We can possibly remove sh though. | 22 | # waterfox requires a shell to launch on Arch. We can possibly remove sh though. |
23 | # private-bin waterfox,which,sh,dbus-launch,dbus-send,env,bash | 23 | #private-bin waterfox,which,sh,dbus-launch,dbus-send,env,bash |
24 | # private-etc ca-certificates,ssl,machine-id,dconf,selinux,passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,xdg,gtk-2.0,gtk-3.0,X11,pango,fonts,waterfox,mime.types,mailcap,asound.conf,pulse,pki,crypto-policies | 24 | # private-etc must first be enabled in firefox-common.profile |
25 | #private-etc waterfox | ||
25 | 26 | ||
26 | # Redirect | 27 | # Redirect |
27 | include /etc/firejail/firefox-common.profile | 28 | include /etc/firejail/firefox-common.profile |