From 018d75775eab4a0f045949a9d069c57686ca2686 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Tue, 21 Apr 2020 08:24:28 -0400
Subject: reorganize github etc directory

---
 etc/profile-m-z/tar.profile | 55 +++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 55 insertions(+)
 create mode 100644 etc/profile-m-z/tar.profile

(limited to 'etc/profile-m-z/tar.profile')

diff --git a/etc/profile-m-z/tar.profile b/etc/profile-m-z/tar.profile
new file mode 100644
index 000000000..3a7405305
--- /dev/null
+++ b/etc/profile-m-z/tar.profile
@@ -0,0 +1,55 @@
+# Firejail profile for tar
+# Description: GNU version of the tar archiving utility
+# This file is overwritten after every install/update
+quiet
+# Persistent local customizations
+include tar.local
+# Persistent global definitions
+include globals.local
+
+blacklist ${RUNUSER}/wayland-*
+
+# Arch Linux (based distributions) need access to /var/lib/pacman. As we drop all capabilities this is automatically read-only.
+noblacklist /var/lib/pacman
+
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+
+apparmor
+caps.drop all
+hostname tar
+ipc-namespace
+machine-id
+net none
+no3d
+nodvd
+nogroups
+nonewprivs
+#noroot
+nosound
+notv
+nou2f
+novideo
+protocol unix
+seccomp
+shell none
+tracelog
+x11 none
+
+# support compressed archives
+private-bin awk,bash,bzip2,compress,firejail,grep,gtar,gzip,lbzip2,lzip,lzma,lzop,sh,tar,xz
+private-cache
+private-dev
+private-etc alternatives,group,localtime,login.defs,passwd
+private-lib libfakeroot
+# Debian based distributions need this for 'dpkg --unpack' (incl. synaptic)
+writable-var
+
+dbus-user none
+dbus-system none
+
+memory-deny-write-execute
-- 
cgit v1.2.3-70-g09d2