From e31cad056ab3ee448ed831c9948d17e35a14e47d Mon Sep 17 00:00:00 2001
From: Matt Parnell <parwok@gmail.com>
Date: Sun, 15 Nov 2015 15:44:29 -0600
Subject: add some other whitelisting for theme and core firefox related
 functionality on Linux

---
 etc/firefox.profile | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'etc/firefox.profile')

diff --git a/etc/firefox.profile b/etc/firefox.profile
index 4e69411a0..ffcf6ac59 100644
--- a/etc/firefox.profile
+++ b/etc/firefox.profile
@@ -1,5 +1,6 @@
 # Firejail profile for Mozilla Firefox (Iceweasel in Debian)
 noblacklist ${HOME}/.mozilla
+noblacklist /usr/lib/firefox
 include /etc/firejail/disable-mgmt.inc
 include /etc/firejail/disable-secret.inc
 include /etc/firejail/disable-common.inc
@@ -9,7 +10,11 @@ seccomp
 protocol unix,inet,inet6,netlink
 netfilter
 noroot
+whitelist ~/.config/mimeapps.list
+whitelist ~/.gtkrc
+whitelist ~/.icons
 whitelist ~/.mozilla
+whitelist ~/.themes
 whitelist ~/Downloads
 whitelist ~/Загрузки
 whitelist ~/.cache/mozilla/firefox
@@ -22,4 +27,4 @@ whitelist ~/.pentadactylrc
 whitelist ~/.pentadactyl
 whitelist ~/.config/gnome-mplayer
 whitelist ~/.cache/gnome-mplayer/plugin
-include /etc/firejail/whitelist-common.inc
\ No newline at end of file
+include /etc/firejail/whitelist-common.inc
-- 
cgit v1.2.3-54-g00ecf