From 9e3ba319be6b9546d7e8f450ca419ee2f3f4040b Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Mon, 7 Aug 2017 01:22:08 -0400
Subject: Unify all profiles

---
 etc/icedove.profile | 34 +++++++++++++++++-----------------
 1 file changed, 17 insertions(+), 17 deletions(-)

(limited to 'etc/icedove.profile')

diff --git a/etc/icedove.profile b/etc/icedove.profile
index a3192c491..8cb4ec1ea 100644
--- a/etc/icedove.profile
+++ b/etc/icedove.profile
@@ -1,27 +1,27 @@
-# Persistent global definitions go here
-include /etc/firejail/globals.local
-
-# This file is overwritten during software install.
-# Persistent customizations should go in a .local file.
+# Firejail profile for icedove
+# This file is overwritten after every install/update
+# Persistent local customizations
 include /etc/firejail/icedove.local
+# Persistent global definitions
+include /etc/firejail/globals.local
 
-# Firejail profile for Mozilla Thunderbird (Icedove in Debian Stable)
-# Users have icedove set to open a browser by clicking a link in an email
-# We are not allowed to blacklist browser-specific directories
-
+noblacklist ~/.cache/icedove
 noblacklist ~/.gnupg
-mkdir ~/.gnupg
-whitelist ~/.gnupg
-
 noblacklist ~/.icedove
-mkdir ~/.icedove
-whitelist ~/.icedove
 
-noblacklist ~/.cache/icedove
 mkdir ~/.cache/icedove
+mkdir ~/.gnupg
+mkdir ~/.icedove
 whitelist ~/.cache/icedove
+whitelist ~/.gnupg
+whitelist ~/.icedove
+include /etc/firejail/whitelist-common.inc
 
-# allow browsers
 ignore private-tmp
+
 include /etc/firejail/firefox.profile
-#include /etc/firejail/chromium.profile - chromium runs as suid!
+
+# CLOBBERED COMMENTS
+# Users have icedove set to open a browser by clicking a link in an email
+# We are not allowed to blacklist browser-specific directories
+# allow browsers
-- 
cgit v1.2.3-54-g00ecf