From 29ca93480312df3b4313b9a2ee222931fbe413c3 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Fri, 5 May 2017 17:54:39 -0400
Subject: LXDE/LXQT integration

---
 etc/clipit.profile       | 29 +++++++++++++++++++++++++++++
 etc/disable-programs.inc |  9 ++++++++-
 etc/leafpad.profile      | 26 ++++++++++++++++++++++++++
 etc/lximage-qt.profile   | 26 ++++++++++++++++++++++++++
 etc/lxmusic.profile      | 27 +++++++++++++++++++++++++++
 etc/qlipper.profile      | 28 ++++++++++++++++++++++++++++
 6 files changed, 144 insertions(+), 1 deletion(-)
 create mode 100644 etc/clipit.profile
 create mode 100644 etc/leafpad.profile
 create mode 100644 etc/lximage-qt.profile
 create mode 100644 etc/lxmusic.profile
 create mode 100644 etc/qlipper.profile

(limited to 'etc')

diff --git a/etc/clipit.profile b/etc/clipit.profile
new file mode 100644
index 000000000..a1a279531
--- /dev/null
+++ b/etc/clipit.profile
@@ -0,0 +1,29 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/clipit.local
+
+noblacklist ${HOME}/.local/share/clipit
+noblacklist ${HOME}/.config/clipit
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+nosound
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 0f2a9b461..29da32bbf 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -36,6 +36,7 @@ blacklist ${HOME}/.config/Meltytech
 blacklist ${HOME}/.config/Mousepad
 blacklist ${HOME}/.config/Mumble
 blacklist ${HOME}/.config/Nylas Mail
+blacklist ${HOME}/.config/Qlipper
 blacklist ${HOME}/.config/QuiteRss
 blacklist ${HOME}/.config/QuiteRssrc
 blacklist ${HOME}/.config/Slack
@@ -58,9 +59,9 @@ blacklist ${HOME}/.config/brave
 blacklist ${HOME}/.config/caja
 blacklist ${HOME}/.config/cherrytree
 blacklist ${HOME}/.config/chromium
-blacklist ${HOME}/.config/qupzilla
 blacklist ${HOME}/.config/chromium-dev
 blacklist ${HOME}/.config/chromium-flags.conf
+blacklist ${HOME}/.config/clipit
 blacklist ${HOME}/.config/cmus
 blacklist ${HOME}/.config/darktable
 blacklist ${HOME}/.config/deadbeef
@@ -96,7 +97,9 @@ blacklist ${HOME}/.config/katesyntaxhighlightingrc
 blacklist ${HOME}/.config/katevirc
 blacklist ${HOME}/.config/kdeconnect
 blacklist ${HOME}/.config/knotesrc
+blacklist ${HOME}/.config/leafpad
 blacklist ${HOME}/.config/libreoffice
+blacklist ${HOME}/.config/lximage-qt
 blacklist ${HOME}/.config/mate/eom
 blacklist ${HOME}/.config/mate/mate-dictionary
 blacklist ${HOME}/.config/mate-calc
@@ -119,6 +122,7 @@ blacklist ${HOME}/.config/psi+
 blacklist ${HOME}/.config/ristretto
 blacklist ${HOME}/.config/qpdfview
 blacklist ${HOME}/.config/qt5ct
+blacklist ${HOME}/.config/qupzilla
 blacklist ${HOME}/.config/qutebrowser
 blacklist ${HOME}/.config/ranger
 blacklist ${HOME}/.config/redshift.conf
@@ -147,6 +151,7 @@ blacklist ${HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/thunar.xml
 blacklist ${HOME}/.config/xfce4/xfce4-notes.rc
 blacklist ${HOME}/.config/xfce4/xfce4-notes.gtkrc
 blacklist ${HOME}/.config/xfce4-dict
+blacklist ${HOME}/.config/xmms2
 blacklist ${HOME}/.config/xplayer
 blacklist ${HOME}/.config/xreader
 blacklist ${HOME}/.config/xviewer
@@ -238,6 +243,7 @@ blacklist ${HOME}/.local/share/aspyr-media
 blacklist ${HOME}/.local/share/baloo
 blacklist ${HOME}/.local/share/caja-python
 blacklist ${HOME}/.local/share/cdprojektred
+blacklist ${HOME}/.local/share/clipit
 blacklist ${HOME}/.local/share/data/Mumble
 blacklist ${HOME}./local/share/dino
 blacklist ${HOME}/.local/share/dolphin
@@ -370,3 +376,4 @@ blacklist ${HOME}/.cache/transmission
 blacklist ${HOME}/.cache/vivaldi
 blacklist ${HOME}/.cache/wesnoth
 blacklist ${HOME}/.cache/xreader
+blacklist ${HOME}/.cache/xmms2
diff --git a/etc/leafpad.profile b/etc/leafpad.profile
new file mode 100644
index 000000000..0d3a6ca4b
--- /dev/null
+++ b/etc/leafpad.profile
@@ -0,0 +1,26 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/leafpad.local
+
+noblacklist ${HOME}/.config/leafpad
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+nosound
diff --git a/etc/lximage-qt.profile b/etc/lximage-qt.profile
new file mode 100644
index 000000000..4fd176eee
--- /dev/null
+++ b/etc/lximage-qt.profile
@@ -0,0 +1,26 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/lximage-qt.local
+
+noblacklist .config/lximage-qt
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+nosound
diff --git a/etc/lxmusic.profile b/etc/lxmusic.profile
new file mode 100644
index 000000000..3a30e0a39
--- /dev/null
+++ b/etc/lxmusic.profile
@@ -0,0 +1,27 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/lxmusic.local
+
+noblacklist ~/.cache/xmms2
+noblacklist ~/.config/xmms2
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+# nosound
diff --git a/etc/qlipper.profile b/etc/qlipper.profile
new file mode 100644
index 000000000..37e3999a1
--- /dev/null
+++ b/etc/qlipper.profile
@@ -0,0 +1,28 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/qlipper.local
+
+noblacklist ${HOME}/.config/Qlipper
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+nosound
-- 
cgit v1.2.3-54-g00ecf