From 3c48e7b6477cb6d01a95a276895d0cbdd0675175 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Mon, 1 May 2017 07:29:41 -0400
Subject: added nemo, gucharmap, gnome-font-viewer profiles

---
 etc/gnome-font-viewer.profile | 26 ++++++++++++++++++++++++++
 etc/gucharmap.profile         | 26 ++++++++++++++++++++++++++
 etc/nemo.profile              | 27 +++++++++++++++++++++++++++
 3 files changed, 79 insertions(+)
 create mode 100644 etc/gnome-font-viewer.profile
 create mode 100644 etc/gucharmap.profile
 create mode 100644 etc/nemo.profile

(limited to 'etc')

diff --git a/etc/gnome-font-viewer.profile b/etc/gnome-font-viewer.profile
new file mode 100644
index 000000000..288cc8a15
--- /dev/null
+++ b/etc/gnome-font-viewer.profile
@@ -0,0 +1,26 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/gnome-font-viewer.local
+
+private
+#include /etc/firejail/disable-common.inc
+#include /etc/firejail/disable-programs.inc
+#include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+nosound
diff --git a/etc/gucharmap.profile b/etc/gucharmap.profile
new file mode 100644
index 000000000..98d3b2f25
--- /dev/null
+++ b/etc/gucharmap.profile
@@ -0,0 +1,26 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/gucharmap.local
+
+private
+#include /etc/firejail/disable-common.inc
+#include /etc/firejail/disable-programs.inc
+#include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+nosound
diff --git a/etc/nemo.profile b/etc/nemo.profile
new file mode 100644
index 000000000..4ebcd952c
--- /dev/null
+++ b/etc/nemo.profile
@@ -0,0 +1,27 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/nemo.local
+
+noblacklist ${HOME}/.local/share/nemo
+noblacklist ${HOME}/.config/nemo
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-devel.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6
+seccomp
+
+#
+# depending on your usage, you can enable some of the commands below: 
+#
+nogroups
+shell none
+# private-bin program
+# private-etc none
+# private-dev
+# private-tmp
+# nosound
-- 
cgit v1.2.3-54-g00ecf