From 4eefd964f7cf262a4a5da5d96217c5ab928b5d14 Mon Sep 17 00:00:00 2001
From: SYN-cook <syncookongit@gmail.com>
Date: Fri, 17 Mar 2017 11:39:07 +0100
Subject: profile for engrampa

forked from file-roller.profile
tested and works well for me
---
 etc/engrampa.profile | 26 ++++++++++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100644 etc/engrampa.profile

(limited to 'etc')

diff --git a/etc/engrampa.profile b/etc/engrampa.profile
new file mode 100644
index 000000000..b30b53085
--- /dev/null
+++ b/etc/engrampa.profile
@@ -0,0 +1,26 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/engrampa.local
+
+# engrampa profile
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+caps.drop all
+nogroups
+nonewprivs
+noroot
+nosound
+no3d
+protocol unix
+seccomp
+netfilter
+shell none
+tracelog
+
+# private-bin engrampa
+# private-tmp
+private-dev
+# private-etc fonts
-- 
cgit v1.2.3-70-g09d2


From 39a9184cff65921f43ca04fe1719c34c36b34e1f Mon Sep 17 00:00:00 2001
From: SYN-cook <syncookongit@gmail.com>
Date: Fri, 17 Mar 2017 13:37:25 +0100
Subject: harden file-roller (no3d)

---
 etc/file-roller.profile | 1 +
 1 file changed, 1 insertion(+)

(limited to 'etc')

diff --git a/etc/file-roller.profile b/etc/file-roller.profile
index 804d20ce1..918e458b7 100644
--- a/etc/file-roller.profile
+++ b/etc/file-roller.profile
@@ -13,6 +13,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+no3d
 protocol unix
 seccomp
 netfilter
-- 
cgit v1.2.3-70-g09d2


From affb22f01232c77bce048fadcd0bb4531af90dfc Mon Sep 17 00:00:00 2001
From: SYN-cook <syncookongit@gmail.com>
Date: Fri, 17 Mar 2017 16:12:37 +0100
Subject: undo no3d (because redundant)

no3d is redundant with nogroups.
---
 etc/file-roller.profile | 1 -
 1 file changed, 1 deletion(-)

(limited to 'etc')

diff --git a/etc/file-roller.profile b/etc/file-roller.profile
index 918e458b7..804d20ce1 100644
--- a/etc/file-roller.profile
+++ b/etc/file-roller.profile
@@ -13,7 +13,6 @@ nogroups
 nonewprivs
 noroot
 nosound
-no3d
 protocol unix
 seccomp
 netfilter
-- 
cgit v1.2.3-70-g09d2


From 873e41109f288df4c396d021b2b9bb976e801911 Mon Sep 17 00:00:00 2001
From: SYN-cook <syncookongit@gmail.com>
Date: Fri, 17 Mar 2017 16:14:36 +0100
Subject: undo no3d (because redundant)

no3d is redundant with nogroups.
---
 etc/engrampa.profile | 1 -
 1 file changed, 1 deletion(-)

(limited to 'etc')

diff --git a/etc/engrampa.profile b/etc/engrampa.profile
index b30b53085..da4872ca0 100644
--- a/etc/engrampa.profile
+++ b/etc/engrampa.profile
@@ -13,7 +13,6 @@ nogroups
 nonewprivs
 noroot
 nosound
-no3d
 protocol unix
 seccomp
 netfilter
-- 
cgit v1.2.3-70-g09d2