diff options
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/profile-a-l/cinelerra-gg | 10 | ||||
| -rw-r--r-- | etc/profile-a-l/deluge.profile | 2 | ||||
| -rw-r--r-- | etc/profile-a-l/godot3.profile | 11 | ||||
| -rw-r--r-- | etc/profile-m-z/nicotine.profile | 7 | ||||
| -rw-r--r-- | etc/profile-m-z/youtube-viewers-common.profile | 12 |
5 files changed, 39 insertions, 3 deletions
diff --git a/etc/profile-a-l/cinelerra-gg b/etc/profile-a-l/cinelerra-gg new file mode 100644 index 000000000..ccb9fe04b --- /dev/null +++ b/etc/profile-a-l/cinelerra-gg | |||
| @@ -0,0 +1,10 @@ | |||
| 1 | # Firejail profile alias for cin | ||
| 2 | # This file is overwritten after every install/update | ||
| 3 | # Persistent local customizations | ||
| 4 | include cinelerra-gg.local | ||
| 5 | # Persistent global definitions | ||
| 6 | # added by included profile | ||
| 7 | #include globals.local | ||
| 8 | |||
| 9 | # Redirect | ||
| 10 | include cin.profile | ||
diff --git a/etc/profile-a-l/deluge.profile b/etc/profile-a-l/deluge.profile index fddd613e2..d8a27da62 100644 --- a/etc/profile-a-l/deluge.profile +++ b/etc/profile-a-l/deluge.profile | |||
| @@ -36,7 +36,7 @@ nosound | |||
| 36 | notv | 36 | notv |
| 37 | nou2f | 37 | nou2f |
| 38 | novideo | 38 | novideo |
| 39 | protocol unix,inet,inet6 | 39 | protocol unix,inet,inet6,netlink |
| 40 | seccomp | 40 | seccomp |
| 41 | 41 | ||
| 42 | # deluge is using python on Debian | 42 | # deluge is using python on Debian |
diff --git a/etc/profile-a-l/godot3.profile b/etc/profile-a-l/godot3.profile new file mode 100644 index 000000000..90d1b15b7 --- /dev/null +++ b/etc/profile-a-l/godot3.profile | |||
| @@ -0,0 +1,11 @@ | |||
| 1 | # Firejail profile for godot | ||
| 2 | # Description: multi-platform 2D and 3D game engine with a feature-rich editor | ||
| 3 | # This file is overwritten after every install/update | ||
| 4 | # Persistent local customizations | ||
| 5 | include godot3.local | ||
| 6 | # Persistent global definitions | ||
| 7 | # added by included profile | ||
| 8 | #include globals.local | ||
| 9 | |||
| 10 | # Redirect | ||
| 11 | include godot.profile | ||
diff --git a/etc/profile-m-z/nicotine.profile b/etc/profile-m-z/nicotine.profile index bb2a41457..22c8b1782 100644 --- a/etc/profile-m-z/nicotine.profile +++ b/etc/profile-m-z/nicotine.profile | |||
| @@ -8,8 +8,12 @@ include globals.local | |||
| 8 | 8 | ||
| 9 | noblacklist ${HOME}/.nicotine | 9 | noblacklist ${HOME}/.nicotine |
| 10 | 10 | ||
| 11 | # Allow /bin/sh (blacklisted by disable-shell.inc) | ||
| 12 | include allow-bin-sh.inc | ||
| 13 | |||
| 11 | # Allow python (blacklisted by disable-interpreters.inc) | 14 | # Allow python (blacklisted by disable-interpreters.inc) |
| 12 | include allow-python2.inc | 15 | include allow-python2.inc |
| 16 | include allow-python3.inc | ||
| 13 | 17 | ||
| 14 | include disable-common.inc | 18 | include disable-common.inc |
| 15 | include disable-devel.inc | 19 | include disable-devel.inc |
| @@ -37,6 +41,7 @@ nodvd | |||
| 37 | nogroups | 41 | nogroups |
| 38 | noinput | 42 | noinput |
| 39 | nonewprivs | 43 | nonewprivs |
| 44 | noprinters | ||
| 40 | noroot | 45 | noroot |
| 41 | nosound | 46 | nosound |
| 42 | notv | 47 | notv |
| @@ -47,7 +52,7 @@ seccomp | |||
| 47 | tracelog | 52 | tracelog |
| 48 | 53 | ||
| 49 | disable-mnt | 54 | disable-mnt |
| 50 | private-bin nicotine,python2* | 55 | #private-bin nicotine,python2* |
| 51 | private-cache | 56 | private-cache |
| 52 | private-dev | 57 | private-dev |
| 53 | private-tmp | 58 | private-tmp |
diff --git a/etc/profile-m-z/youtube-viewers-common.profile b/etc/profile-m-z/youtube-viewers-common.profile index 8582e2462..28c219377 100644 --- a/etc/profile-m-z/youtube-viewers-common.profile +++ b/etc/profile-m-z/youtube-viewers-common.profile | |||
| @@ -19,6 +19,13 @@ include allow-perl.inc | |||
| 19 | include allow-python2.inc | 19 | include allow-python2.inc |
| 20 | include allow-python3.inc | 20 | include allow-python3.inc |
| 21 | 21 | ||
| 22 | # The lines below are needed to find the default Firefox profile name, to allow | ||
| 23 | # opening links in an existing instance of Firefox (note that it still fails if | ||
| 24 | # there isn't a Firefox instance running with the default profile; see #5352) | ||
| 25 | noblacklist ${HOME}/.mozilla | ||
| 26 | whitelist ${HOME}/.mozilla/firefox/profiles.ini | ||
| 27 | read-only ${HOME}/.mozilla/firefox/profiles.ini | ||
| 28 | |||
| 22 | include disable-common.inc | 29 | include disable-common.inc |
| 23 | include disable-devel.inc | 30 | include disable-devel.inc |
| 24 | include disable-exec.inc | 31 | include disable-exec.inc |
| @@ -55,5 +62,8 @@ private-dev | |||
| 55 | private-etc alsa,alternatives,asound.conf,ca-certificates,crypto-policies,fonts,gtk-2.0,gtk-3.0,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,machine-id,mime.types,nsswitch.conf,passwd,pki,pulse,resolv.conf,ssl,X11,xdg | 62 | private-etc alsa,alternatives,asound.conf,ca-certificates,crypto-policies,fonts,gtk-2.0,gtk-3.0,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,machine-id,mime.types,nsswitch.conf,passwd,pki,pulse,resolv.conf,ssl,X11,xdg |
| 56 | private-tmp | 63 | private-tmp |
| 57 | 64 | ||
| 58 | dbus-user none | 65 | dbus-user filter |
| 66 | # allow D-Bus communication with firefox for opening links | ||
| 67 | dbus-user.talk org.mozilla.* | ||
| 68 | |||
| 59 | dbus-system none | 69 | dbus-system none |