From 39dc3c893b5d895ed9db9071dd47b3de7b28f2fd Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Mon, 7 Aug 2017 14:24:51 -0400
Subject: Unify last 8 profiles

---
 etc/brave.profile | 51 ++++++++++++++++++++++-----------------------------
 1 file changed, 22 insertions(+), 29 deletions(-)

(limited to 'etc/brave.profile')

diff --git a/etc/brave.profile b/etc/brave.profile
index e73dd37a2..20dbf6c52 100644
--- a/etc/brave.profile
+++ b/etc/brave.profile
@@ -1,43 +1,36 @@
-# Persistent global definitions go here
-include /etc/firejail/globals.local
-
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
+# Firejail profile for brave
+# This file is overwritten after every install/update
+# Persistent local customizations
 include /etc/firejail/brave.local
+# Persistent global definitions
+include /etc/firejail/globals.local
 
-# Profile for Brave browser
 noblacklist ~/.config/brave
-noblacklist ~/.pki
-
 # brave uses gpg for built-in password manager
 noblacklist ~/.gnupg
+noblacklist ~/.pki
 
 include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-devel.inc
-
-#caps.drop all
-netfilter
-#nonewprivs
-#noroot
-#protocol unix,inet,inet6,netlink
-#seccomp
-
-#disable-mnt
-
-whitelist ${DOWNLOADS}
+include /etc/firejail/disable-programs.inc
 
 mkdir ~/.config/brave
-whitelist ~/.config/brave
 mkdir ~/.pki
-whitelist ~/.pki
-
-# lastpass, keepass
-# for keepass we additionally need to whitelist our .kdbx password database
-whitelist ~/.keepass
-whitelist ~/.config/keepass
+whitelist ${DOWNLOADS}
 whitelist ~/.config/KeePass
-whitelist ~/.lastpass
+whitelist ~/.config/brave
+whitelist ~/.config/keepass
 whitelist ~/.config/lastpass
-
+whitelist ~/.keepass
+whitelist ~/.lastpass
+whitelist ~/.pki
 include /etc/firejail/whitelist-common.inc
+
+# caps.drop all
+netfilter
+# nonewprivs
+# noroot
+# protocol unix,inet,inet6,netlink
+# seccomp
+
+# disable-mnt
-- 
cgit v1.2.3-70-g09d2