From 0293e40012bd8ec1efcd9982179ef25e68bb916c Mon Sep 17 00:00:00 2001
From: pirate486743186 <okgomdjgbmoij@gmail.com>
Date: Wed, 28 Nov 2018 21:08:36 +0100
Subject: restricting more, HOME and tmp in mpsyt.profile

---
 etc/mpsyt.profile | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/etc/mpsyt.profile b/etc/mpsyt.profile
index c64b71ad6..eb51a45cc 100644
--- a/etc/mpsyt.profile
+++ b/etc/mpsyt.profile
@@ -13,6 +13,18 @@ noblacklist ${HOME}/.netrc
 noblacklist ${HOME}/mps
 noblacklist ${MUSIC}
 noblacklist ${VIDEOS}
+noblacklist ${DOWNLOADS}
+
+mkdir ${HOME}/.config/mps-youtube
+
+whitelist ${HOME}/.config/mpv
+whitelist ${HOME}/.mplayer
+whitelist ${HOME}/.config/mps-youtube
+whitelist ${HOME}/.netrc
+whitelist ${HOME}/mps
+whitelist ${MUSIC}
+whitelist ${VIDEOS}
+whitelist ${DOWNLOADS}
 
 # Allow python (blacklisted by disable-interpreters.inc)
 noblacklist ${PATH}/python2*
@@ -45,3 +57,7 @@ tracelog
 
 private-bin mpsyt,mplayer,mpv,youtube-dl,python*,env
 private-dev
+private-tmp
+
+noexec ${HOME}
+noexec /tmp
-- 
cgit v1.2.3-54-g00ecf