diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/disable-programs.inc | 1 | ||||
-rw-r--r-- | etc/eom.profile | 20 |
2 files changed, 21 insertions, 0 deletions
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 837ac1e4c..0f155351d 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc | |||
@@ -20,6 +20,7 @@ blacklist ${HOME}/.config/xreader | |||
20 | blacklist ${HOME}/.config/xviewer | 20 | blacklist ${HOME}/.config/xviewer |
21 | blacklist ${HOME}/.config/libreoffice | 21 | blacklist ${HOME}/.config/libreoffice |
22 | blacklist ${HOME}/.config/pix | 22 | blacklist ${HOME}/.config/pix |
23 | blacklist ${HOME}/.config/mate/eom | ||
23 | blacklist ${HOME}/.kde/share/apps/okular | 24 | blacklist ${HOME}/.kde/share/apps/okular |
24 | blacklist ${HOME}/.kde/share/config/okularrc | 25 | blacklist ${HOME}/.kde/share/config/okularrc |
25 | blacklist ${HOME}/.kde/share/config/okularpartrc | 26 | blacklist ${HOME}/.kde/share/config/okularpartrc |
diff --git a/etc/eom.profile b/etc/eom.profile new file mode 100644 index 000000000..81d993e96 --- /dev/null +++ b/etc/eom.profile | |||
@@ -0,0 +1,20 @@ | |||
1 | # Firejail profile for Eye of Mate (eom) | ||
2 | noblacklist ~/.config/mate/eom | ||
3 | |||
4 | include /etc/firejail/disable-common.inc | ||
5 | include /etc/firejail/disable-programs.inc | ||
6 | include /etc/firejail/disable-devel.inc | ||
7 | include /etc/firejail/disable-passwdmgr.inc | ||
8 | |||
9 | caps.drop all | ||
10 | nogroups | ||
11 | nonewprivs | ||
12 | noroot | ||
13 | nosound | ||
14 | protocol unix | ||
15 | seccomp | ||
16 | shell none | ||
17 | tracelog | ||
18 | |||
19 | private-bin eom | ||
20 | private-dev | ||