From 4a5449b4c6869835b743a6a4566d89d84df3ce67 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Thu, 13 Jun 2019 08:38:16 -0400
Subject: OpenArena profile

---
 etc/openarena.profile | 51 +++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 51 insertions(+)
 create mode 100644 etc/openarena.profile

(limited to 'etc/openarena.profile')

diff --git a/etc/openarena.profile b/etc/openarena.profile
new file mode 100644
index 000000000..f36d3270f
--- /dev/null
+++ b/etc/openarena.profile
@@ -0,0 +1,51 @@
+# Firejail profile for OpenArena
+# Description: deathmatch FPS game based on GPL idTech3 technology
+# This file is overwritten after every install/update
+# Persistent local customizations
+include openarena.local
+# Persistent global definitions
+include globals.local
+
+noblacklist ${HOME}/.openarena
+
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+
+include whitelist-var-common.inc
+
+apparmor
+caps.drop all
+# ipc-namespace
+# machine-id
+# net none
+# netfilter
+# no3d
+# nodbus
+# nodvd
+# nogroups
+nonewprivs
+noroot
+# nosound
+notv
+# nou2f
+novideo
+protocol unix,inet,inet6,netlink
+seccomp
+shell none
+# tracelog
+
+# disable-mnt
+# private
+# private-bin openarena
+private-cache
+private-dev
+# private-etc machine-id,xdg,openal,udev,drirc,passwd,selinux
+# private-lib
+private-tmp
+
+# memory-deny-write-execute
-- 
cgit v1.2.3-70-g09d2