From 395fca8a670aa87e057c2f66c812b58579493fe2 Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Thu, 20 May 2021 18:34:24 +0000
Subject: fixes for eb30ce5 (new profiles) (#4291)

* fix blobby

* fix funnyboat

* fix librecad

* drop doubled netfilter entree in blobby

* drop unneeded include in funnyboat
---
 etc/profile-a-l/blobby.profile    | 10 +++++-----
 etc/profile-a-l/funnyboat.profile | 10 +++++-----
 etc/profile-a-l/librecad.profile  |  9 +++++----
 3 files changed, 15 insertions(+), 14 deletions(-)

(limited to 'etc/profile-a-l')

diff --git a/etc/profile-a-l/blobby.profile b/etc/profile-a-l/blobby.profile
index 9bb097b7e..229c20293 100644
--- a/etc/profile-a-l/blobby.profile
+++ b/etc/profile-a-l/blobby.profile
@@ -34,19 +34,19 @@ noroot
 notv
 nou2f
 novideo
-protocol unix,inet,netlink,
-netfilter
+protocol unix,inet,inet6,netlink
 seccomp
 shell none
 tracelog
 
 disable-mnt
-private-bin blobby,
-private-lib
+private-bin blobby
 private-dev
-private-etc hosts,group,asound.conf,alsa,machine-id,pulse,drirc,login.defs,passwd,
+private-etc alsa,alternatives,asound.conf,drirc,group,hosts,login.defs,machine-id,passwd,pulse
+private-lib
 private-tmp
 
 dbus-user none
 dbus-system none
+
 memory-deny-write-execute
diff --git a/etc/profile-a-l/funnyboat.profile b/etc/profile-a-l/funnyboat.profile
index e4d9b018e..8852925b1 100644
--- a/etc/profile-a-l/funnyboat.profile
+++ b/etc/profile-a-l/funnyboat.profile
@@ -1,4 +1,4 @@
-# Firejail profile for default
+# Firejail profile for funnyboat
 # This file is overwritten after every install/update
 # Persistent local customizations
 include funnyboat.local
@@ -7,17 +7,17 @@ include globals.local
 
 noblacklist ${HOME}/.funnyboat
 
-include disable-common.inc
-include disable-devel.inc
 ignore noexec /dev/shm
-include disable-exec.inc
 include allow-python2.inc
 include allow-python3.inc
+
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
 include disable-interpreters.inc
 include disable-passwdmgr.inc
 include disable-programs.inc
 # include disable-shell.inc
-include disable-write-mnt.inc
 include disable-xdg.inc
 
 mkdir ${HOME}/.funnyboat
diff --git a/etc/profile-a-l/librecad.profile b/etc/profile-a-l/librecad.profile
index 431caf914..c57eae73d 100644
--- a/etc/profile-a-l/librecad.profile
+++ b/etc/profile-a-l/librecad.profile
@@ -32,19 +32,20 @@ noroot
 notv
 #nou2f
 novideo
-protocol unix,inet,inet6,
+protocol unix,inet,inet6
 netfilter
 seccomp
 shell none
 #tracelog
 
 #disable-mnt
-private-bin librecad,
-#private-lib
+private-bin librecad
 private-dev
-# private-etc cups,drirc,fonts,xdg,passwd,
+# private-etc cups,drirc,fonts,passwd,xdg
+#private-lib
 private-tmp
 
 dbus-user none
 dbus-system none
+
 memory-deny-write-execute
-- 
cgit v1.2.3-70-g09d2