diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/profile-a-l/audacity.profile | 2 | ||||
-rw-r--r-- | etc/profile-a-l/gimp.profile | 2 | ||||
-rw-r--r-- | etc/profile-a-l/iagno.profile | 10 | ||||
-rw-r--r-- | etc/profile-m-z/rhythmbox.profile | 1 | ||||
-rw-r--r-- | etc/profile-m-z/totem.profile | 2 |
5 files changed, 13 insertions, 4 deletions
diff --git a/etc/profile-a-l/audacity.profile b/etc/profile-a-l/audacity.profile index 392b189f8..c2a482b61 100644 --- a/etc/profile-a-l/audacity.profile +++ b/etc/profile-a-l/audacity.profile | |||
@@ -50,7 +50,7 @@ tracelog | |||
50 | 50 | ||
51 | private-bin audacity | 51 | private-bin audacity |
52 | private-dev | 52 | private-dev |
53 | private-etc @tls-ca,@x11 | 53 | private-etc @x11 |
54 | private-tmp | 54 | private-tmp |
55 | 55 | ||
56 | # problems on Fedora 27 | 56 | # problems on Fedora 27 |
diff --git a/etc/profile-a-l/gimp.profile b/etc/profile-a-l/gimp.profile index 717519112..6f350f8ac 100644 --- a/etc/profile-a-l/gimp.profile +++ b/etc/profile-a-l/gimp.profile | |||
@@ -59,7 +59,7 @@ seccomp !mbind | |||
59 | tracelog | 59 | tracelog |
60 | 60 | ||
61 | private-dev | 61 | private-dev |
62 | private-etc @tls-ca,@x11,python* | 62 | private-etc @x11,python* |
63 | private-tmp | 63 | private-tmp |
64 | 64 | ||
65 | dbus-user none | 65 | dbus-user none |
diff --git a/etc/profile-a-l/iagno.profile b/etc/profile-a-l/iagno.profile index e16f3f1d5..82cba7887 100644 --- a/etc/profile-a-l/iagno.profile +++ b/etc/profile-a-l/iagno.profile | |||
@@ -13,6 +13,13 @@ include disable-interpreters.inc | |||
13 | include disable-programs.inc | 13 | include disable-programs.inc |
14 | include disable-shell.inc | 14 | include disable-shell.inc |
15 | 15 | ||
16 | whitelist ${HOME}/.local/share/glib-2.0/schemas | ||
17 | include whitelist-common.inc | ||
18 | |||
19 | include whitelist-runuser-common.inc | ||
20 | whitelist /usr/share/iagno | ||
21 | whitelist /usr/share/gdm | ||
22 | include whitelist-usr-share-common.inc | ||
16 | include whitelist-var-common.inc | 23 | include whitelist-var-common.inc |
17 | 24 | ||
18 | apparmor | 25 | apparmor |
@@ -28,11 +35,12 @@ nou2f | |||
28 | novideo | 35 | novideo |
29 | protocol unix | 36 | protocol unix |
30 | seccomp | 37 | seccomp |
38 | seccomp.block-secondary | ||
31 | 39 | ||
32 | disable-mnt | 40 | disable-mnt |
33 | private | ||
34 | private-bin iagno | 41 | private-bin iagno |
35 | private-dev | 42 | private-dev |
43 | private-etc @x11,gconf | ||
36 | private-tmp | 44 | private-tmp |
37 | 45 | ||
38 | # dbus-user none | 46 | # dbus-user none |
diff --git a/etc/profile-m-z/rhythmbox.profile b/etc/profile-m-z/rhythmbox.profile index dccd93429..77c032a53 100644 --- a/etc/profile-m-z/rhythmbox.profile +++ b/etc/profile-m-z/rhythmbox.profile | |||
@@ -51,6 +51,7 @@ tracelog | |||
51 | private-bin rhythmbox,rhythmbox-client | 51 | private-bin rhythmbox,rhythmbox-client |
52 | private-cache | 52 | private-cache |
53 | private-dev | 53 | private-dev |
54 | private-etc @tls-ca,@x11,python* | ||
54 | private-tmp | 55 | private-tmp |
55 | 56 | ||
56 | dbus-user filter | 57 | dbus-user filter |
diff --git a/etc/profile-m-z/totem.profile b/etc/profile-m-z/totem.profile index e21d37040..a4cb49171 100644 --- a/etc/profile-m-z/totem.profile +++ b/etc/profile-m-z/totem.profile | |||
@@ -51,7 +51,7 @@ private-bin totem | |||
51 | # totem needs access to ~/.cache/tracker or it exits | 51 | # totem needs access to ~/.cache/tracker or it exits |
52 | #private-cache | 52 | #private-cache |
53 | private-dev | 53 | private-dev |
54 | # private-etc alternatives,asound.conf,ca-certificates,crypto-policies,fonts,machine-id,pki,pulse,ssl | 54 | private-etc @tls-ca,@x11,python* |
55 | private-tmp | 55 | private-tmp |
56 | 56 | ||
57 | # makes settings immutable | 57 | # makes settings immutable |