From 9e3ba319be6b9546d7e8f450ca419ee2f3f4040b Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Mon, 7 Aug 2017 01:22:08 -0400
Subject: Unify all profiles

---
 etc/google-chrome.profile | 35 +++++++++++++++++------------------
 1 file changed, 17 insertions(+), 18 deletions(-)

(limited to 'etc/google-chrome.profile')

diff --git a/etc/google-chrome.profile b/etc/google-chrome.profile
index e6fceadec..84fdcdd21 100644
--- a/etc/google-chrome.profile
+++ b/etc/google-chrome.profile
@@ -1,39 +1,38 @@
-# Persistent global definitions go here
-include /etc/firejail/globals.local
-
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
+# Firejail profile for google-chrome
+# This file is overwritten after every install/update
+# Persistent local customizations
 include /etc/firejail/google-chrome.local
+# Persistent global definitions
+include /etc/firejail/globals.local
 
-# Google Chrome browser profile
-noblacklist ~/.config/google-chrome
 noblacklist ~/.cache/google-chrome
+noblacklist ~/.config/google-chrome
 noblacklist ~/.pki
-include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
 
-# chromium is distributed with a perl script on Arch
+include /etc/firejail/disable-common.inc
 # include /etc/firejail/disable-devel.inc
-#
+include /etc/firejail/disable-programs.inc
 
-whitelist ${DOWNLOADS}
-mkdir ~/.config/google-chrome
-whitelist ~/.config/google-chrome
 mkdir ~/.cache/google-chrome
-whitelist ~/.cache/google-chrome
+mkdir ~/.config/google-chrome
 mkdir ~/.pki
+whitelist ${DOWNLOADS}
+whitelist ~/.cache/google-chrome
+whitelist ~/.config/google-chrome
 whitelist ~/.pki
 include /etc/firejail/whitelist-common.inc
 
 caps.keep sys_chroot,sys_admin
-#ipc-namespace
 netfilter
 nogroups
 shell none
 
 private-dev
-#private-tmp - problems with multiple browser sessions
-#disable-mnt
+# private-tmp - problems with multiple browser sessions
 
 noexec ${HOME}
 noexec /tmp
+
+# CLOBBERED COMMENTS
+# chromium is distributed with a perl script on Arch
+# disable-mnt
-- 
cgit v1.2.3-54-g00ecf