From df2f568041fd926a217812523399b059bc888233 Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Sun, 11 Feb 2018 15:27:30 -0500
Subject: Unify all Chromium and Firefox based browser profiles as part of
 #1773

---
 etc/chromium-common.profile | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)
 create mode 100644 etc/chromium-common.profile

(limited to 'etc/chromium-common.profile')

diff --git a/etc/chromium-common.profile b/etc/chromium-common.profile
new file mode 100644
index 000000000..5c5215309
--- /dev/null
+++ b/etc/chromium-common.profile
@@ -0,0 +1,32 @@
+# Firejail profile for chromium-common
+# This file is overwritten after every install/update
+# Persistent local customizations
+include /etc/firejail/chromium-common.local
+# Persistent global definitions
+include /etc/firejail/globals.local
+
+noblacklist ${HOME}/.pki
+
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-programs.inc
+
+mkdir ${HOME}/.pki
+whitelist ${DOWNLOADS}
+whitelist ${HOME}/.pki
+include /etc/firejail/whitelist-common.inc
+include /etc/firejail/whitelist-var-common.inc
+
+caps.keep sys_chroot,sys_admin
+netfilter
+nodvd
+nogroups
+notv
+shell none
+
+disable-mnt
+private-dev
+# private-tmp - problems with multiple browser sessions
+
+noexec ${HOME}
+noexec /tmp
-- 
cgit v1.2.3-54-g00ecf