From 3adedf90bf9ecc2695bac0edd3f900300a48d562 Mon Sep 17 00:00:00 2001
From: greigdp <greigdp@users.noreply.github.com>
Date: Wed, 17 Aug 2016 11:42:14 +0100
Subject: Add profile support for Slack

---
 etc/disable-programs.inc |  1 +
 etc/slack.profile        | 27 +++++++++++++++++++++++++++
 2 files changed, 28 insertions(+)
 create mode 100644 etc/slack.profile

(limited to 'etc')

diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 140417b01..c94bcc9f4 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -78,6 +78,7 @@ blacklist ${HOME}/.TelegramDesktop
 blacklist ${HOME}/.config/Gitter
 blacklist ${HOME}/.config/Franz
 blacklist ${HOME}/.jitsi
+blacklist ${HOME}/.config/Slack
 
 # Games
 blacklist ${HOME}/.hedgewars
diff --git a/etc/slack.profile b/etc/slack.profile
new file mode 100644
index 000000000..ea7b715f9
--- /dev/null
+++ b/etc/slack.profile
@@ -0,0 +1,27 @@
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+mkdir ${HOME}/.config
+mkdir ${HOME}/.config/Slack
+whitelist ${HOME}/.config/Slack
+whitelist ~/Downloads
+
+protocol unix,inet,inet6,netlink
+private-dev
+private-tmp
+private-etc fonts,resolv.conf,ld.so.conf,ld.so.cache,localtime
+name slack
+blacklist /var
+
+include /etc/firejail/whitelist-common.inc
+
+caps.drop all
+seccomp
+netfilter
+nonewprivs
+nogroups
+noroot
+shell none
+private-bin slack
-- 
cgit v1.2.3-54-g00ecf