From 018d75775eab4a0f045949a9d069c57686ca2686 Mon Sep 17 00:00:00 2001 From: netblue30 Date: Tue, 21 Apr 2020 08:24:28 -0400 Subject: reorganize github etc directory --- etc/profile-a-l/gimp.profile | 55 ++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 55 insertions(+) create mode 100644 etc/profile-a-l/gimp.profile (limited to 'etc/profile-a-l/gimp.profile') diff --git a/etc/profile-a-l/gimp.profile b/etc/profile-a-l/gimp.profile new file mode 100644 index 000000000..8093c0c39 --- /dev/null +++ b/etc/profile-a-l/gimp.profile @@ -0,0 +1,55 @@ +# Firejail profile for gimp +# Description: GNU Image Manipulation Program +# This file is overwritten after every install/update +# Persistent local customizations +include gimp.local +# Persistent global definitions +include globals.local + +# gimp plugins are installed by the user in ${HOME}/.gimp-2.8/plug-ins/ directory +# if you are not using external plugins, you can comment 'ignore noexec' statement below +# or put 'noexec ${HOME}' in your gimp.local +ignore noexec ${HOME} + +noblacklist ${HOME}/.cache/babl +noblacklist ${HOME}/.cache/gegl-0.4 +noblacklist ${HOME}/.cache/gimp +noblacklist ${HOME}/.config/GIMP +noblacklist ${HOME}/.gimp* +noblacklist ${DOCUMENTS} +noblacklist ${PICTURES} + +include disable-common.inc +include disable-exec.inc +include disable-devel.inc +include disable-passwdmgr.inc +include disable-programs.inc +include disable-xdg.inc + +whitelist /usr/share/gegl-0.4 +whitelist /usr/share/gimp +whitelist /usr/share/mypaint-data +whitelist /usr/share/lensfun +include whitelist-usr-share-common.inc +include whitelist-var-common.inc + +apparmor +caps.drop all +net none +nodvd +nogroups +nonewprivs +noroot +nosound +notv +nou2f +protocol unix +seccomp +shell none +tracelog + +private-dev +private-tmp + +dbus-user none +dbus-system none -- cgit v1.2.3-70-g09d2