From 75f249703ecf8a66b0475c0ce12069fa9b900d50 Mon Sep 17 00:00:00 2001 From: kortewegdevries <62639087+kortewegdevries@users.noreply.github.com> Date: Thu, 23 Jul 2020 23:22:29 +0530 Subject: Added freetube profile (#3535) * Added freetube profile Initial * Added freetube profile Second:drop ignore seccomp,add disable-shell See https://github.com/netblue30/firejail/pull/3535 --- etc/inc/disable-programs.inc | 1 + etc/profile-a-l/freetube.profile | 31 +++++++++++++++++++++++++++++++ src/firecfg/firecfg.config | 1 + 3 files changed, 33 insertions(+) create mode 100644 etc/profile-a-l/freetube.profile diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc index f5595d134..d59ce8c73 100644 --- a/etc/inc/disable-programs.inc +++ b/etc/inc/disable-programs.inc @@ -87,6 +87,7 @@ blacklist ${HOME}/.config/Enox blacklist ${HOME}/.config/Ferdi blacklist ${HOME}/.config/Franz blacklist ${HOME}/.config/FreeCAD +blacklist ${HOME}/.config/FreeTube blacklist ${HOME}/.config/Fritzing blacklist ${HOME}/.config/GIMP blacklist ${HOME}/.config/GitHub Desktop diff --git a/etc/profile-a-l/freetube.profile b/etc/profile-a-l/freetube.profile new file mode 100644 index 000000000..1bb39cf87 --- /dev/null +++ b/etc/profile-a-l/freetube.profile @@ -0,0 +1,31 @@ +# Firejail profile for freetube +# Description: Youtube client with local subscription feature +# This file is overwritten after every install/update +# Persistent local customizations +include freetube.local +# Persistent global definitions +include globals.local + +noblacklist ${HOME}/.config/FreeTube + +include disable-devel.inc +include disable-exec.inc +include disable-interpreters.inc +include disable-shell.inc +include disable-xdg.inc + +mkdir ${HOME}/.config/FreeTube +whitelist ${HOME}/.config/FreeTube + +shell none +seccomp !chroot + +disable-mnt +private-bin freetube +private-cache +private-dev +private-etc alsa,alternatives,asound.conf,ca-certificates,crypto-policies,fonts,gtk-2.0,gtk-3.0,hosts,host.conf,hostname,mime.types,nsswitch.conf,pki,pulse,resolv.conf,ssl,xdg,X11 +private-tmp + +# Redirect +include electron.profile \ No newline at end of file diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config index dbe08e216..5d5858496 100644 --- a/src/firecfg/firecfg.config +++ b/src/firecfg/firecfg.config @@ -239,6 +239,7 @@ freemind freeoffice-planmaker freeoffice-presentations freeoffice-textmaker +freetube freshclam frogatto frozen-bubble -- cgit v1.2.3-54-g00ecf