From 9e3ba319be6b9546d7e8f450ca419ee2f3f4040b Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Mon, 7 Aug 2017 01:22:08 -0400
Subject: Unify all profiles

---
 etc/exiftool.profile | 21 ++++++++++-----------
 1 file changed, 10 insertions(+), 11 deletions(-)

(limited to 'etc/exiftool.profile')

diff --git a/etc/exiftool.profile b/etc/exiftool.profile
index e69a6206e..3637fc989 100644
--- a/etc/exiftool.profile
+++ b/etc/exiftool.profile
@@ -1,36 +1,35 @@
+# Firejail profile for exiftool
+# This file is overwritten after every install/update
 quiet
-# Persistent global definitions go here
+# Persistent local customizations
+include /etc/firejail/exiftool.local
+# Persistent global definitions
 include /etc/firejail/globals.local
 
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
-include /etc/firejail/exiftool.local
+blacklist /tmp/.X11-unix
 
-# exiftool profile
 noblacklist /usr/bin/perl
-noblacklist /usr/share/perl*
 noblacklist /usr/lib/perl*
+noblacklist /usr/share/perl*
 
 include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-devel.inc
 include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
 
 caps.drop all
 net none
+no3d
 nogroups
 nonewprivs
 noroot
 nosound
 protocol unix
 seccomp
-no3d
 shell none
 tracelog
 
-blacklist /tmp/.X11-unix
-
 # private-bin exiftool,perl
-private-tmp
 private-dev
 private-etc none
+private-tmp
-- 
cgit v1.2.3-70-g09d2