From 93ced2adc1c71b567c0992d662de55f1e45455b7 Mon Sep 17 00:00:00 2001
From: Tobias Schmidl <tobias@schmidl.cc>
Date: Sat, 16 Feb 2019 06:55:19 +0100
Subject: Added profile for webui-aria2

[webui-aria2](https://github.com/ziahamza/webui-aria2) is a popular UI
for the aria2 download manager.
---
 etc/webui-aria2.profile | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 etc/webui-aria2.profile

diff --git a/etc/webui-aria2.profile b/etc/webui-aria2.profile
new file mode 100644
index 000000000..6d33ac6e9
--- /dev/null
+++ b/etc/webui-aria2.profile
@@ -0,0 +1,31 @@
+# Firejail profile for webui-aria2
+# This file is overwritten after every install/update
+# Persistent local customizations
+include webui-aria2.local
+# Persistent global definitions
+include globals.local
+
+noblacklist ${PATH}/node
+
+include disable-common.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-devel.inc
+include disable-interpreters.inc
+
+caps.drop all
+netfilter
+nodvd
+nogroups
+nonewprivs
+noroot
+notv
+nou2f
+novideo
+protocol unix,inet,inet6
+seccomp
+shell none
+
+private-cache
+private-dev
+private-tmp
-- 
cgit v1.2.3-54-g00ecf


From 7de6e63421841ec119c6aa3391a33632bd299513 Mon Sep 17 00:00:00 2001
From: Tobias Schmidl <schtobia@users.noreply.github.com>
Date: Sun, 17 Feb 2019 19:45:49 +0100
Subject: Webui-aria2.profile: Added run comment

Added a notice on how to run this profile
---
 etc/webui-aria2.profile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/etc/webui-aria2.profile b/etc/webui-aria2.profile
index 6d33ac6e9..eb91820b0 100644
--- a/etc/webui-aria2.profile
+++ b/etc/webui-aria2.profile
@@ -1,4 +1,5 @@
 # Firejail profile for webui-aria2
+# Run this with firejail --profile=webui-aria2 node node-server.js
 # This file is overwritten after every install/update
 # Persistent local customizations
 include webui-aria2.local
-- 
cgit v1.2.3-54-g00ecf


From cc43847b2c77b0e2bc80ea273c38971325aed065 Mon Sep 17 00:00:00 2001
From: Tobias Schmidl <tobias@schmidl.cc>
Date: Mon, 18 Feb 2019 13:07:47 +0100
Subject: webui-aria2: Added @glitsj16's comments

- Reordered the "include disable" statements
- Added `nodbus`, `nosound`, `noexec`
---
 etc/webui-aria2.profile | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/etc/webui-aria2.profile b/etc/webui-aria2.profile
index eb91820b0..5bc9c122b 100644
--- a/etc/webui-aria2.profile
+++ b/etc/webui-aria2.profile
@@ -9,17 +9,20 @@ include globals.local
 noblacklist ${PATH}/node
 
 include disable-common.inc
-include disable-passwdmgr.inc
-include disable-programs.inc
 include disable-devel.inc
 include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
 
 caps.drop all
 netfilter
+nodbus
 nodvd
 nogroups
 nonewprivs
 noroot
+nosound
 notv
 nou2f
 novideo
@@ -30,3 +33,6 @@ shell none
 private-cache
 private-dev
 private-tmp
+
+noexec ${HOME}
+noexec /tmp
-- 
cgit v1.2.3-54-g00ecf