diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/chromium.profile | 3 | ||||
-rw-r--r-- | etc/disable-devel.inc | 2 | ||||
-rw-r--r-- | etc/disable-programs.inc | 4 | ||||
-rw-r--r-- | etc/flowblade.profile | 13 | ||||
-rw-r--r-- | etc/openshot.profile | 13 | ||||
-rw-r--r-- | etc/virtualbox.profile | 12 |
6 files changed, 46 insertions, 1 deletions
diff --git a/etc/chromium.profile b/etc/chromium.profile index 0d383aebf..4109af9a4 100644 --- a/etc/chromium.profile +++ b/etc/chromium.profile | |||
@@ -25,4 +25,7 @@ whitelist ~/keepassx.kdbx | |||
25 | whitelist ~/.lastpass | 25 | whitelist ~/.lastpass |
26 | whitelist ~/.config/lastpass | 26 | whitelist ~/.config/lastpass |
27 | 27 | ||
28 | # specific to Arch | ||
29 | whitelist ~/.config/chromium-flags.conf | ||
30 | |||
28 | include /etc/firejail/whitelist-common.inc | 31 | include /etc/firejail/whitelist-common.inc |
diff --git a/etc/disable-devel.inc b/etc/disable-devel.inc index 971857710..2ac367f37 100644 --- a/etc/disable-devel.inc +++ b/etc/disable-devel.inc | |||
@@ -20,7 +20,7 @@ blacklist /usr/bin/x86_64-unknown-linux-gnu-gcc* | |||
20 | # clang/llvm | 20 | # clang/llvm |
21 | blacklist /usr/bin/clang* | 21 | blacklist /usr/bin/clang* |
22 | blacklist /usr/bin/llvm* | 22 | blacklist /usr/bin/llvm* |
23 | blacklist /usb/bin/lldb* | 23 | blacklist /usr/bin/lldb* |
24 | blacklist /usr/lib/llvm* | 24 | blacklist /usr/lib/llvm* |
25 | 25 | ||
26 | # tcc - Tiny C Compiler | 26 | # tcc - Tiny C Compiler |
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 369e4813c..1ff486509 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -35,6 +35,10 @@ blacklist ${HOME}/.gimp* | |||
35 | blacklist ${HOME}/.config/zathura | 35 | blacklist ${HOME}/.config/zathura |
36 | blacklist ${HOME}/.config/cherrytree | 36 | blacklist ${HOME}/.config/cherrytree |
37 | blacklist ${HOME}/.xpdfrc | 37 | blacklist ${HOME}/.xpdfrc |
38 | blacklist ${HOME}/.openshot | ||
39 | blacklist ${HOME}/.openshot_qt | ||
40 | blacklist ${HOME}/.flowblade | ||
41 | blacklist ${HOME}/.config/flowblade | ||
38 | 42 | ||
39 | 43 | ||
40 | # Media players | 44 | # Media players |
diff --git a/etc/flowblade.profile b/etc/flowblade.profile new file mode 100644 index 000000000..e1ec291bd --- /dev/null +++ b/etc/flowblade.profile | |||
@@ -0,0 +1,13 @@ | |||
1 | # OpenShot profile | ||
2 | noblacklist ${HOME}/.flowblade | ||
3 | noblacklist ${HOME}/.config/flowblade | ||
4 | include /etc/firejail/disable-common.inc | ||
5 | include /etc/firejail/disable-programs.inc | ||
6 | include /etc/firejail/disable-passwdmgr.inc | ||
7 | |||
8 | caps.drop all | ||
9 | netfilter | ||
10 | nonewprivs | ||
11 | noroot | ||
12 | protocol unix,inet,inet6,netlink | ||
13 | seccomp | ||
diff --git a/etc/openshot.profile b/etc/openshot.profile new file mode 100644 index 000000000..f12bd7d11 --- /dev/null +++ b/etc/openshot.profile | |||
@@ -0,0 +1,13 @@ | |||
1 | # OpenShot profile | ||
2 | noblacklist ${HOME}/.openshot | ||
3 | noblacklist ${HOME}/.openshot_qt | ||
4 | include /etc/firejail/disable-common.inc | ||
5 | include /etc/firejail/disable-programs.inc | ||
6 | include /etc/firejail/disable-passwdmgr.inc | ||
7 | |||
8 | caps.drop all | ||
9 | netfilter | ||
10 | nonewprivs | ||
11 | noroot | ||
12 | protocol unix,inet,inet6,netlink | ||
13 | seccomp | ||
diff --git a/etc/virtualbox.profile b/etc/virtualbox.profile new file mode 100644 index 000000000..148b7efc8 --- /dev/null +++ b/etc/virtualbox.profile | |||
@@ -0,0 +1,12 @@ | |||
1 | # VirtualBox profile | ||
2 | |||
3 | noblacklist ${HOME}/.VirtualBox | ||
4 | noblacklist ${HOME}/VirtualBox VMs | ||
5 | noblacklist ${HOME}/.config/VirtualBox | ||
6 | include /etc/firejail/disable-common.inc | ||
7 | include /etc/firejail/disable-programs.inc | ||
8 | include /etc/firejail/disable-passwdmgr.inc | ||
9 | |||
10 | caps.drop all | ||
11 | |||
12 | |||