From d8e99fe94afbc41fb2495a302f2caa23758cbd67 Mon Sep 17 00:00:00 2001 From: Fred Barclay Date: Sat, 15 Apr 2017 21:19:07 -0500 Subject: Added viewnior profile --- README | 2 +- README.md | 2 +- RELNOTES | 2 +- etc/disable-programs.inc | 1 + etc/viewnior.profile | 30 ++++++++++++++++++++++++++++++ platform/debian/conffiles | 1 + src/firecfg/firecfg.config | 1 + 7 files changed, 36 insertions(+), 3 deletions(-) create mode 100644 etc/viewnior.profile diff --git a/README b/README index c532907af..6e8dcb8ca 100644 --- a/README +++ b/README @@ -183,7 +183,7 @@ Fred-Barclay (https://github.com/Fred-Barclay) - tighten keepassx - added Thunar profile - added mousepad, qpicview, and cvlc profiles - - addedd BibleTime profile + - added BibleTime and profiles G4JC (http://sourceforge.net/u/gaming4jc/profile/) - ARM support - profile fixes diff --git a/README.md b/README.md index 89f459798..ab9123057 100644 --- a/README.md +++ b/README.md @@ -196,4 +196,4 @@ simple-scan, skanlite, ssh-agent, tracker, transmission-cli, transmission-show, xed, pluma, Cryptocat, Bless, Gnome 2048, Gnome Calculator, Gnome Contacts, JD-GUI, Lollypop, MultiMC5, PDFSam, Pithos, Xonotic, wireshark, keepassx2, QupZilla, FossaMail, Uzbl browser, xmms, iridium browser, Kino, Thunar, Geeqie, Engrampa, Scribus, mousepad, gpicview, keepassxc, cvlc, MediathekView, baloo_file, -Nylas, dino, BibleTime +Nylas, dino, BibleTime, viewnior diff --git a/RELNOTES b/RELNOTES index d2c4d7cd9..252965f82 100644 --- a/RELNOTES +++ b/RELNOTES @@ -36,7 +36,7 @@ firejail (0.9.46-rc1) baseline; urgency=low * new profiles: Xonotic, wireshark, keepassx2, QupZilla, FossaMail, * new profiles: Uzbl browser, iridium browser, Thunar, Geeqie, Engrampa, * new profiles: Scribus, mousepad, gpicview, keepassxc, cvlc, MediathekView, - * new profiles: baloo_file, Nylas, dino, BibleTime + * new profiles: baloo_file, Nylas, dino, BibleTime, viewnior * bugfixes -- netblue30 Fri, 7 Apr 2017 08:00:00 -0500 diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index bad1f0263..e9ed47e38 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc @@ -124,6 +124,7 @@ blacklist ${HOME}/.config/totem blacklist ${HOME}/.config/tox blacklist ${HOME}/.config/transmission blacklist ${HOME}/.config/uGet +blacklist ${HOME}/.config/viewnior blacklist ${HOME}/.config/vivaldi blacklist ${HOME}/.config/vlc blacklist ${HOME}/.config/wesnoth diff --git a/etc/viewnior.profile b/etc/viewnior.profile new file mode 100644 index 000000000..190c04e39 --- /dev/null +++ b/etc/viewnior.profile @@ -0,0 +1,30 @@ +# This file is overwritten during software install. +# Persistent customizations should go in a .local file. +include /etc/firejail/viewnior.local + +# Firejail profile for viewnior +noblacklist ~/.config/viewnior + +include /etc/firejail/disable-common.inc +include /etc/firejail/disable-programs.inc +include /etc/firejail/disable-devel.inc +include /etc/firejail/disable-passwdmgr.inc + +blacklist ~/.bashrc +blacklist ~/.Xauthority + +caps.drop all +net none +nogroups +nonewprivs +noroot +nosound +protocol unix +seccomp +shell none +tracelog + +private-bin viewnior +private-dev +private-etc fonts +private-tmp diff --git a/platform/debian/conffiles b/platform/debian/conffiles index 5f994128a..dca17bfbe 100644 --- a/platform/debian/conffiles +++ b/platform/debian/conffiles @@ -205,6 +205,7 @@ /etc/firejail/unrar.profile /etc/firejail/unzip.profile /etc/firejail/uudeview.profile +/etc/firejail/viewnior.profile /etc/firejail/vim.profile /etc/firejail/virtualbox.profile /etc/firejail/vivaldi.profile diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config index 4a40402d7..27a34472d 100644 --- a/src/firecfg/firecfg.config +++ b/src/firecfg/firecfg.config @@ -140,6 +140,7 @@ simple-scan skanlite spotify totem +viewnior vlc xfburn xmms -- cgit v1.2.3-70-g09d2