From cc9f0d0dc39635531d4f41a3d40edc3ab6da3a78 Mon Sep 17 00:00:00 2001 From: mahdi1234 Date: Tue, 19 Jan 2016 21:31:04 +0100 Subject: Added seamonkey profile --- seamonkey.profile | 30 ++++++++++++++++++++++++++++++ 1 file changed, 30 insertions(+) create mode 100644 seamonkey.profile diff --git a/seamonkey.profile b/seamonkey.profile new file mode 100644 index 000000000..d21efc7f5 --- /dev/null +++ b/seamonkey.profile @@ -0,0 +1,30 @@ +# Firejail profile for Mozilla Firefox (Iceweasel in Debian) +noblacklist ${HOME}/.mozilla +include /etc/firejail/disable-mgmt.inc +include /etc/firejail/disable-secret.inc +include /etc/firejail/disable-common.inc +include /etc/firejail/disable-devel.inc +caps.drop all +seccomp +protocol unix,inet,inet6,netlink +netfilter +tracelog +noroot +whitelist ${DOWNLOADS} +whitelist ~/.mozilla/seamonkey +whitelist ~/.cache/mozilla/seamonkey +whitelist ~/dwhelper +whitelist ~/.zotero +whitelist ~/.lastpass +whitelist ~/.vimperatorrc +whitelist ~/.vimperator +whitelist ~/.pentadactylrc +whitelist ~/.pentadactyl +whitelist ~/.keysnail.js +whitelist ~/.config/gnome-mplayer +whitelist ~/.cache/gnome-mplayer/plugin +include /etc/firejail/whitelist-common.inc + +# experimental features +#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse + -- cgit v1.2.3-54-g00ecf From 420f4c6b8a41de34cc0f15ba7ffd272f4555820c Mon Sep 17 00:00:00 2001 From: mahdi1234 Date: Tue, 19 Jan 2016 21:32:38 +0100 Subject: Added seamonkey-bin profile Gentoo is having both compiled and binary packages each having different executable thus bin profile as well --- etc/seamonkey-bin.profile | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 etc/seamonkey-bin.profile diff --git a/etc/seamonkey-bin.profile b/etc/seamonkey-bin.profile new file mode 100644 index 000000000..dd635d639 --- /dev/null +++ b/etc/seamonkey-bin.profile @@ -0,0 +1,29 @@ +# Firejail profile for Mozilla Firefox (Iceweasel in Debian) +noblacklist ${HOME}/.mozilla +include /etc/firejail/disable-mgmt.inc +include /etc/firejail/disable-secret.inc +include /etc/firejail/disable-common.inc +include /etc/firejail/disable-devel.inc +caps.drop all +seccomp +protocol unix,inet,inet6,netlink +netfilter +tracelog +noroot +whitelist ${DOWNLOADS} +whitelist ~/.mozilla/seamonkey +whitelist ~/.cache/mozilla/seamonkey +whitelist ~/dwhelper +whitelist ~/.zotero +whitelist ~/.lastpass +whitelist ~/.vimperatorrc +whitelist ~/.vimperator +whitelist ~/.pentadactylrc +whitelist ~/.pentadactyl +whitelist ~/.keysnail.js +whitelist ~/.config/gnome-mplayer +whitelist ~/.cache/gnome-mplayer/plugin +include /etc/firejail/whitelist-common.inc + +# experimental features +#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse -- cgit v1.2.3-54-g00ecf From c442fc3178436020b1f8141ff498848c019ddb4f Mon Sep 17 00:00:00 2001 From: mahdi1234 Date: Tue, 19 Jan 2016 21:39:32 +0100 Subject: Added seamonkey profile --- etc/seamonkey.profile | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 etc/seamonkey.profile diff --git a/etc/seamonkey.profile b/etc/seamonkey.profile new file mode 100644 index 000000000..9769c1d08 --- /dev/null +++ b/etc/seamonkey.profile @@ -0,0 +1,31 @@ +cat ./seamonkey.profile +# Firejail profile for Seamoneky based off Mozilla Firefox +noblacklist ${HOME}/.mozilla +include /etc/firejail/disable-mgmt.inc +include /etc/firejail/disable-secret.inc +include /etc/firejail/disable-common.inc +include /etc/firejail/disable-devel.inc +caps.drop all +seccomp +protocol unix,inet,inet6,netlink +netfilter +tracelog +noroot +whitelist ${DOWNLOADS} +whitelist ~/.mozilla/seamonkey +whitelist ~/.cache/mozilla/seamonkey +whitelist ~/dwhelper +whitelist ~/.zotero +whitelist ~/.lastpass +whitelist ~/.vimperatorrc +whitelist ~/.vimperator +whitelist ~/.pentadactylrc +whitelist ~/.pentadactyl +whitelist ~/.keysnail.js +whitelist ~/.config/gnome-mplayer +whitelist ~/.cache/gnome-mplayer/plugin +include /etc/firejail/whitelist-common.inc + +# experimental features +#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse + -- cgit v1.2.3-54-g00ecf From c281a14e8d2f3fffab648fc8b7b513a86edd17f3 Mon Sep 17 00:00:00 2001 From: mahdi1234 Date: Tue, 19 Jan 2016 21:40:20 +0100 Subject: Removed --- etc/seamonkey.profile | 31 ------------------------------- 1 file changed, 31 deletions(-) delete mode 100644 etc/seamonkey.profile diff --git a/etc/seamonkey.profile b/etc/seamonkey.profile deleted file mode 100644 index 9769c1d08..000000000 --- a/etc/seamonkey.profile +++ /dev/null @@ -1,31 +0,0 @@ -cat ./seamonkey.profile -# Firejail profile for Seamoneky based off Mozilla Firefox -noblacklist ${HOME}/.mozilla -include /etc/firejail/disable-mgmt.inc -include /etc/firejail/disable-secret.inc -include /etc/firejail/disable-common.inc -include /etc/firejail/disable-devel.inc -caps.drop all -seccomp -protocol unix,inet,inet6,netlink -netfilter -tracelog -noroot -whitelist ${DOWNLOADS} -whitelist ~/.mozilla/seamonkey -whitelist ~/.cache/mozilla/seamonkey -whitelist ~/dwhelper -whitelist ~/.zotero -whitelist ~/.lastpass -whitelist ~/.vimperatorrc -whitelist ~/.vimperator -whitelist ~/.pentadactylrc -whitelist ~/.pentadactyl -whitelist ~/.keysnail.js -whitelist ~/.config/gnome-mplayer -whitelist ~/.cache/gnome-mplayer/plugin -include /etc/firejail/whitelist-common.inc - -# experimental features -#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse - -- cgit v1.2.3-54-g00ecf From db5584d34e666dc2df54dd23f0061fc116a109cd Mon Sep 17 00:00:00 2001 From: mahdi1234 Date: Tue, 19 Jan 2016 21:40:37 +0100 Subject: Removed --- etc/seamonkey-bin.profile | 29 ----------------------------- 1 file changed, 29 deletions(-) delete mode 100644 etc/seamonkey-bin.profile diff --git a/etc/seamonkey-bin.profile b/etc/seamonkey-bin.profile deleted file mode 100644 index dd635d639..000000000 --- a/etc/seamonkey-bin.profile +++ /dev/null @@ -1,29 +0,0 @@ -# Firejail profile for Mozilla Firefox (Iceweasel in Debian) -noblacklist ${HOME}/.mozilla -include /etc/firejail/disable-mgmt.inc -include /etc/firejail/disable-secret.inc -include /etc/firejail/disable-common.inc -include /etc/firejail/disable-devel.inc -caps.drop all -seccomp -protocol unix,inet,inet6,netlink -netfilter -tracelog -noroot -whitelist ${DOWNLOADS} -whitelist ~/.mozilla/seamonkey -whitelist ~/.cache/mozilla/seamonkey -whitelist ~/dwhelper -whitelist ~/.zotero -whitelist ~/.lastpass -whitelist ~/.vimperatorrc -whitelist ~/.vimperator -whitelist ~/.pentadactylrc -whitelist ~/.pentadactyl -whitelist ~/.keysnail.js -whitelist ~/.config/gnome-mplayer -whitelist ~/.cache/gnome-mplayer/plugin -include /etc/firejail/whitelist-common.inc - -# experimental features -#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse -- cgit v1.2.3-54-g00ecf From 3c42aaa11ea0c70c268a3613905c699a48cad2f1 Mon Sep 17 00:00:00 2001 From: mahdi1234 Date: Tue, 19 Jan 2016 21:41:21 +0100 Subject: Added Seamonkey profile --- etc/seamonkey.profile | 30 ++++++++++++++++++++++++++++++ 1 file changed, 30 insertions(+) create mode 100644 etc/seamonkey.profile diff --git a/etc/seamonkey.profile b/etc/seamonkey.profile new file mode 100644 index 000000000..55b64bdae --- /dev/null +++ b/etc/seamonkey.profile @@ -0,0 +1,30 @@ +# Firejail profile for Seamoneky based off Mozilla Firefox +noblacklist ${HOME}/.mozilla +include /etc/firejail/disable-mgmt.inc +include /etc/firejail/disable-secret.inc +include /etc/firejail/disable-common.inc +include /etc/firejail/disable-devel.inc +caps.drop all +seccomp +protocol unix,inet,inet6,netlink +netfilter +tracelog +noroot +whitelist ${DOWNLOADS} +whitelist ~/.mozilla/seamonkey +whitelist ~/.cache/mozilla/seamonkey +whitelist ~/dwhelper +whitelist ~/.zotero +whitelist ~/.lastpass +whitelist ~/.vimperatorrc +whitelist ~/.vimperator +whitelist ~/.pentadactylrc +whitelist ~/.pentadactyl +whitelist ~/.keysnail.js +whitelist ~/.config/gnome-mplayer +whitelist ~/.cache/gnome-mplayer/plugin +include /etc/firejail/whitelist-common.inc + +# experimental features +#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse + -- cgit v1.2.3-54-g00ecf From 7a48ede93b1deda6d31e064cbab5e8a91d098025 Mon Sep 17 00:00:00 2001 From: mahdi1234 Date: Tue, 19 Jan 2016 21:42:46 +0100 Subject: Added Seamonkey-bin profile Gentoo has both binary and non-binary packages thus -bin profile --- etc/seamonkey-bin.profile | 30 ++++++++++++++++++++++++++++++ 1 file changed, 30 insertions(+) create mode 100644 etc/seamonkey-bin.profile diff --git a/etc/seamonkey-bin.profile b/etc/seamonkey-bin.profile new file mode 100644 index 000000000..55b64bdae --- /dev/null +++ b/etc/seamonkey-bin.profile @@ -0,0 +1,30 @@ +# Firejail profile for Seamoneky based off Mozilla Firefox +noblacklist ${HOME}/.mozilla +include /etc/firejail/disable-mgmt.inc +include /etc/firejail/disable-secret.inc +include /etc/firejail/disable-common.inc +include /etc/firejail/disable-devel.inc +caps.drop all +seccomp +protocol unix,inet,inet6,netlink +netfilter +tracelog +noroot +whitelist ${DOWNLOADS} +whitelist ~/.mozilla/seamonkey +whitelist ~/.cache/mozilla/seamonkey +whitelist ~/dwhelper +whitelist ~/.zotero +whitelist ~/.lastpass +whitelist ~/.vimperatorrc +whitelist ~/.vimperator +whitelist ~/.pentadactylrc +whitelist ~/.pentadactyl +whitelist ~/.keysnail.js +whitelist ~/.config/gnome-mplayer +whitelist ~/.cache/gnome-mplayer/plugin +include /etc/firejail/whitelist-common.inc + +# experimental features +#private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse + -- cgit v1.2.3-54-g00ecf