| Commit message (Collapse) | Author | Age |
|---|
| |\
| |
| | |
mutt.profile: add ~/.mutthistory & reduce amount of paths created
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Let either the respective program or the user create the file.
* ~/.bogofilter: Used by the bogofilter program
* ~/.msmtprc: Used by the msmtp program
Added on commit a8a8e33bc ("Add whitelisting to mutt; improve geary, new
profile for neomutt", 2020-12-28) / PR #3849.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
To reduce the amount of spam created in the user home directory.
It's unlikely that these paths are going to be both:
* Created only after mutt is first opened through firejail and
* Created from within mutt
Also, no other profile does that:
$ git grep -El '(mkdir|mkfile) \$\{HOME\}/\.(emacs|nano|vim)' -- etc
etc/profile-m-z/mutt.profile
So just whitelist them if they already exist.
Added on commit a8a8e33bc ("Add whitelisting to mutt; improve geary, new
profile for neomutt", 2020-12-28) / PR #3849.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
From the manual of mutt 2.2.9:
> 3.125. history_file
>
> Type: path
> Default: "~/.mutthistory"
>
> The file in which Mutt will save its history.
|
| | |
| |
| |
| |
| |
| | |
Command used:
$ ./ci/check/profiles/sort.py etc/inc/*.inc etc/profile-*/*.profile
|
| | |
| |
| |
| | |
This is necessary if I want to launch a terminal editor from
qutebrowser.
|
| |/ |
|
| |
|
|
| |
Closes #5601
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
* zoom.profile: whitelist ~/.config/zoom.conf
With Zoom version 5.12.6, Zoom changed how they handle encrypting the local
database. This change resulted in the new file zoom.conf being used. As it is
not allowed by the current profile, this could lead to users losing their chat
history if they cannot be retrieved from the cloud (e.g. when e2e encryption is
used).
* zoom.profile: noblacklist ~/.config/zoom.conf
Additional blacklisting for other programs to the configuration file.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |\
| |
| | |
email-common refactoring
|
| | | |
|
| |\ \
| | |
| | | |
New profiles: linuxqq/qq
|
| | |\| |
|
| | | | |
|
| | | |
| | |
| | | |
As suggested in review.
|
| | |/
|/| |
|
| |\ \
| | |
| | | |
claws-mail and sylpheed D-Bus hardening
|
| | |/ |
|
| |/ |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* disable-programs.inc: add ssmtp support
* Create ssmtp.profile
* ssmtp: support Debian/Ubuntu
* README.md: add ssmtp to 'New profiles' section
* disable-common.inc: move ssmtp support to keep CI happy
* ssmtp: improve dead.letter comment
Suggested in [review](https://github.com/netblue30/firejail/pull/5544#pullrequestreview-1225322546).
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* seahorse: fixes and hardening
* seahorse-daemon: hardening
* seahorse-tool: move private-etc items to seahorse
* seahorse: unbreak nautilus file encryption
As suggested [in review](https://github.com/netblue30/firejail/pull/5543#pullrequestreview-1225250520).
* seahorse-tool: move private-tmp to seahorse
* seahorse: add private-tmp
* seahorse: fix access to ssh-agent socket
|
| | |
|
| | |
|
| |
|
|
|
| |
* qbittorrent: add support for Qt6
* wusc: add support for Qt6
|
| |
|
| |
Overlooked [this comment](https://github.com/netblue30/firejail/pull/5389#discussion_r992471940) that pointed out a mistake I made.
|
| |
|
|
|
|
|
|
|
| |
* private-etc: always include 'alternatives'
* private-etc: always include 'alternatives'
* private-etc: always include 'alternatives'
* private-etc: always include 'alternatives'
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Add firecfg support for tesseract
* Add tesseract to 'New profiles' section in README.md
* Create tesseract.profile
* tesseract: fix private-etc
* tesseract: fix XDG black/whitelisting
* tesseract: use 'seccomp socket' instead of 'protocol unix'
As kindly suggested by @rusty-snake.
* tesseract: add 'restrict-namespaces'
As kindly suggested by @rusty-snake.
* tesseract: use full seccomp filtering
The tesseract application works fine without 'protocol' or 'seccomp socket'.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
As suggested by @glitsj16[1].
Project homepage: https://github.com/abba23/spotify-adblock
Configuration paths:
* /etc/spotify-adblock/config.toml
* ~/.config/spotify-adblock/config.toml
Fixes #5494.
[1] https://github.com/netblue30/firejail/discussions/5494#discussioncomment-4280887
Reported-by: @Rewig95
|
| |\
| |
| | |
fix: PyCharm profiles
|
| | |
| |
| |
| |
| |
| |
| | |
Do not use `private-cache`, because PyCharm places in cache
directories stuff like spelling dictionary (i. e. if you download
spelling dictionary with `private-cache`, on restart PyCharm you need
to download spelling dictionary again).
|
| |\ \
| | |
| | | |
Profile fixes
|
| | |/ |
|
| | |
| |
| | |
Co-authored-by: pirate486743186 <>
|
| |/
|
|
|
|
|
| |
* Add python3 support to nicotine
* Revert private-bin changes
Adding shell and python3 support to private-bin kept breaking nicotine for the user who reported it on IRC. Let's revert it as suggested by @rusty-snake.
|
netblue30
Kelvin M. Klann
amano-kenji
Alexandre Provencio
fkrone
Mohammed Anas
glitsj16
smitsohu
rusty-snake
Bogdan Ruslanovich Drozd
pirate486743186