From e31c599cd07942349d5e2f31098679ba2975842f Mon Sep 17 00:00:00 2001
From: smitsohu <smitsohu@gmail.com>
Date: Sun, 25 Dec 2022 19:48:42 +0100
Subject: window manager profiles: fix browser/electron internal sandboxes

---
 etc/profile-a-l/awesome.profile  | 4 ++--
 etc/profile-a-l/blackbox.profile | 4 ++--
 etc/profile-a-l/fluxbox.profile  | 4 ++--
 etc/profile-a-l/i3.profile       | 4 ++--
 etc/profile-m-z/openbox.profile  | 4 ++--
 5 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/etc/profile-a-l/awesome.profile b/etc/profile-a-l/awesome.profile
index ee9280fe8..d8c073c8d 100644
--- a/etc/profile-a-l/awesome.profile
+++ b/etc/profile-a-l/awesome.profile
@@ -14,7 +14,7 @@ caps.drop all
 netfilter
 noroot
 protocol unix,inet,inet6
-seccomp
+seccomp !chroot
 
 read-only ${HOME}/.config/awesome/autorun.sh
-restrict-namespaces
+#restrict-namespaces
diff --git a/etc/profile-a-l/blackbox.profile b/etc/profile-a-l/blackbox.profile
index 753254ffc..f89026899 100644
--- a/etc/profile-a-l/blackbox.profile
+++ b/etc/profile-a-l/blackbox.profile
@@ -14,6 +14,6 @@ caps.drop all
 netfilter
 noroot
 protocol unix,inet,inet6
-seccomp
+seccomp !chroot
 
-restrict-namespaces
+#restrict-namespaces
diff --git a/etc/profile-a-l/fluxbox.profile b/etc/profile-a-l/fluxbox.profile
index 2ae87be48..af55ffc89 100644
--- a/etc/profile-a-l/fluxbox.profile
+++ b/etc/profile-a-l/fluxbox.profile
@@ -14,6 +14,6 @@ caps.drop all
 netfilter
 noroot
 protocol unix,inet,inet6
-seccomp
+seccomp !chroot
 
-restrict-namespaces
+#restrict-namespaces
diff --git a/etc/profile-a-l/i3.profile b/etc/profile-a-l/i3.profile
index a0c3f2d97..2268072ef 100644
--- a/etc/profile-a-l/i3.profile
+++ b/etc/profile-a-l/i3.profile
@@ -14,6 +14,6 @@ caps.drop all
 netfilter
 noroot
 protocol unix,inet,inet6
-seccomp
+seccomp !chroot
 
-restrict-namespaces
+#restrict-namespaces
diff --git a/etc/profile-m-z/openbox.profile b/etc/profile-m-z/openbox.profile
index 6a256593c..2da867dec 100644
--- a/etc/profile-m-z/openbox.profile
+++ b/etc/profile-m-z/openbox.profile
@@ -14,8 +14,8 @@ caps.drop all
 netfilter
 noroot
 protocol unix,inet,inet6
-seccomp
+seccomp !chroot
 
 read-only ${HOME}/.config/openbox/autostart
 read-only ${HOME}/.config/openbox/environment
-restrict-namespaces
+#restrict-namespaces
-- 
cgit v1.2.3-70-g09d2