From 2cc65305e470638cd00bfc4aa90821851b35b53c Mon Sep 17 00:00:00 2001 From: Fred-Barclay Date: Sun, 17 Apr 2016 23:53:27 +1000 Subject: added warzone2100 profile --- etc/warzone2100.profile | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 etc/warzone2100.profile diff --git a/etc/warzone2100.profile b/etc/warzone2100.profile new file mode 100644 index 000000000..73408ffb1 --- /dev/null +++ b/etc/warzone2100.profile @@ -0,0 +1,19 @@ +# Firejail profile for warzone2100 +# Currently supports warzone2100-3.1 +include /etc/firejail/disable-common.inc +include /etc/firejail/disable-devel.inc +include /etc/firejail/disable-passwdmgr.inc +include /etc/firejail/disable-programs.inc + +# Call these options +caps.drop all +netfilter +noroot +protocol unix,inet,inet6,netlink +seccomp +tracelog + +# Whitelist +noblacklist ~/.warzone2100-3.1 +mkdir ~/.warzone2100-3.1 +whitelist ~/.warzone2100-3.1 -- cgit v1.2.3-70-g09d2 From eb5c4692f16f9329975ddc2919442aa1fb2c0a44 Mon Sep 17 00:00:00 2001 From: Fred-Barclay Date: Mon, 18 Apr 2016 00:02:21 +1000 Subject: warzone2100 extra files --- Makefile.in | 1 + etc/disable-programs.inc | 1 + platform/debian/conffiles | 1 + src/firecfg/firecfg.config | 1 + 4 files changed, 4 insertions(+) diff --git a/Makefile.in b/Makefile.in index 64a6fbd76..590f2cd5f 100644 --- a/Makefile.in +++ b/Makefile.in @@ -165,6 +165,7 @@ realinstall: install -c -m 0644 .etc/abrowser.profile $(DESTDIR)/$(sysconfdir)/firejail/. install -c -m 0644 .etc/0ad.profile $(DESTDIR)/$(sysconfdir)/firejail/. install -c -m 0644 .etc/netsurf.profile $(DESTDIR)/$(sysconfdir)/firejail/. + install -c -m 0644 .etc/warzone2100.profile $(DESTDIR)/$(sysconfdir)/firejail/. sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/firejail.config ]; then install -c -m 0644 etc/firejail.config $(DESTDIR)/$(sysconfdir)/firejail/.; fi;" rm -fr .etc diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 7f18aa16f..43b9cff38 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc @@ -54,6 +54,7 @@ blacklist ${HOME}/.hedgewars blacklist ${HOME}/.steam blacklist ${HOME}/.config/wesnoth blacklist ${HOME}/.config/0ad +blacklist ${HOME}/.warzone2100-3.1 # Cryptocoins blacklist ${HOME}/.*coin diff --git a/platform/debian/conffiles b/platform/debian/conffiles index 5f1546a4f..2413965ba 100644 --- a/platform/debian/conffiles +++ b/platform/debian/conffiles @@ -84,3 +84,4 @@ /etc/firejail/abrowser.profile /etc/firejail/0ad.profile /etc/firejail/netsurf.profile +/etc/firejail/warzone2100.profile diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config index fed477f44..80433f1e5 100644 --- a/src/firecfg/firecfg.config +++ b/src/firecfg/firecfg.config @@ -75,3 +75,4 @@ xchat # games hedgewars wesnot +warzone2100 -- cgit v1.2.3-70-g09d2