From 3f94dd1d4769f413d5390198b2bba14e821f03bb Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Thu, 2 Jan 2020 23:04:28 +0000
Subject: Fix artha

I intentionally wanted to have this as a 'whitelist' profile. The only snag is that artha seems to generate ${HOME}/.config/artha.config.XXXXXX that I cannot whitelist upfront. Added notes to highlight this behaviour.
---
 etc/artha.profile | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'etc/artha.profile')

diff --git a/etc/artha.profile b/etc/artha.profile
index 5bbba354e..f8d0f2aa1 100644
--- a/etc/artha.profile
+++ b/etc/artha.profile
@@ -7,6 +7,7 @@ include artha.local
 include globals.local
 
 noblacklist ${HOME}/.config/artha.conf
+noblacklist ${HOME}/.config/artha.log
 noblacklist ${HOME}/.config/enchant
 
 blacklist /tmp/.X11-unix
@@ -19,9 +20,13 @@ include disable-passwdmgr.inc
 include disable-programs.inc
 include disable-xdg.inc
 
+# this 'whitelist' profile could make settings immutable
+# either turn it into a 'blacklist' profile by commenting the lines below
+# or set your preferences by running artha without firejail once
 mkfile ${HOME}/.config/artha.conf
 mkdir ${HOME}/.config/enchant
 whitelist ${HOME}/.config/artha.conf
+whitelist ${HOME}/.config/artha.log
 whitelist ${HOME}/.config/enchant
 whitelist /usr/share/artha
 whitelist /usr/share/wordnet
@@ -46,6 +51,7 @@ novideo
 protocol unix
 seccomp
 shell none
+tracelog
 
 disable-mnt
 private-bin artha,enchant,notify-send
-- 
cgit v1.2.3-70-g09d2