From 31325cb3e0b4f190438fa9e2f8ad6a19372829f6 Mon Sep 17 00:00:00 2001 From: rusty-snake Date: Sun, 2 Jun 2019 13:15:51 +0200 Subject: Add profiles for klatexformula, klatexformula_cmdl --- etc/disable-programs.inc | 2 ++ etc/klatexformula.profile | 43 ++++++++++++++++++++++++++++++++++++++++++ etc/klatexformula_cmdl.profile | 5 +++++ 3 files changed, 50 insertions(+) create mode 100644 etc/klatexformula.profile create mode 100644 etc/klatexformula_cmdl.profile (limited to 'etc') diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 5481f976f..1c3ff7840 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc @@ -370,6 +370,7 @@ blacklist ${HOME}/.kde/share/apps/kaffeine blacklist ${HOME}/.kde/share/apps/kcookiejar blacklist ${HOME}/.kde/share/apps/kget blacklist ${HOME}/.kde/share/apps/khtml +blacklist ${HOME}/.kde/share/apps/klatexformula blacklist ${HOME}/.kde/share/apps/konqsidebartng blacklist ${HOME}/.kde/share/apps/konqueror blacklist ${HOME}/.kde/share/apps/kopete @@ -426,6 +427,7 @@ blacklist ${HOME}/.kde4/share/config/okularrc blacklist ${HOME}/.killingfloor blacklist ${HOME}/.kino-history blacklist ${HOME}/.kinorc +blacklist ${HOME}/.klatexformula blacklist ${HOME}/.kodi blacklist ${HOME}/.lincity-ng blacklist ${HOME}/.linphone-history.db diff --git a/etc/klatexformula.profile b/etc/klatexformula.profile new file mode 100644 index 000000000..d584f6a56 --- /dev/null +++ b/etc/klatexformula.profile @@ -0,0 +1,43 @@ +# Firejail profile for klatexformula +# Description: generating images from LaTeX equations +# This file is overwritten after every install/update +# Persistent local customizations +include klatexformula.local +# Persistent global definitions +include globals.local + +noblacklist ${HOME}/.kde/share/apps/klatexformula +noblacklist ${HOME}/.klatexformula + +# Allow python (blacklisted by disable-interpreters.inc) +include allow-python2.inc +include allow-python3.inc + +include disable-common.inc +include disable-devel.inc +include disable-exec.inc +include disable-interpreters.inc +include disable-passwdmgr.inc +include disable-programs.inc + +apparmor +caps.drop all +machine-id +net none +nodbus +nodvd +nogroups +nonewprivs +noroot +nosound +notv +nou2f +novideo +protocol unix +seccomp +shell none +tracelog + +private-cache +private-dev +private-tmp diff --git a/etc/klatexformula_cmdl.profile b/etc/klatexformula_cmdl.profile new file mode 100644 index 000000000..9137963c4 --- /dev/null +++ b/etc/klatexformula_cmdl.profile @@ -0,0 +1,5 @@ +# Firejail profile alias for klatexformula_cmdl +# This file is overwritten after every install/update + +# Redirect +include klatexformula.profile -- cgit v1.2.3-70-g09d2