From 348b875f3025988a336e365a3127f6d6b25bec18 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Sat, 29 Jul 2017 07:52:17 -0400
Subject: new profiles

---
 etc/simutrans.profile | 41 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 41 insertions(+)
 create mode 100644 etc/simutrans.profile

(limited to 'etc/simutrans.profile')

diff --git a/etc/simutrans.profile b/etc/simutrans.profile
new file mode 100644
index 000000000..b1df0ba28
--- /dev/null
+++ b/etc/simutrans.profile
@@ -0,0 +1,41 @@
+# Persistent global definitions go here
+include /etc/firejail/globals.local
+
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/simutrans.local
+
+################################
+# simutrans profile
+################################
+
+noblacklist ~/.simutrans
+mkdir ~/.simutrans
+whitelist ~/.simutrans
+include /etc/firejail/whitelist-common.inc
+
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+nonewprivs
+noroot
+protocol unix
+seccomp
+
+#
+# depending on your usage, you can enable some of the commands below:
+#
+net none
+nogroups
+shell none
+#private-bin simutrans
+# private-etc none
+private-dev
+private-tmp
+# nosound
+
+
+
+
-- 
cgit v1.2.3-70-g09d2