From 8c8a62f238feba0151f780d8a788b1f01aa33b42 Mon Sep 17 00:00:00 2001
From: Lockdis <45907176+Lockdis@users.noreply.github.com>
Date: Thu, 24 Jan 2019 18:59:08 +0100
Subject: Update nyx.profile, crow.profile

---
 etc/crow.profile | 14 ++------------
 etc/nyx.profile  | 18 ++++++------------
 2 files changed, 8 insertions(+), 24 deletions(-)

(limited to 'etc')

diff --git a/etc/crow.profile b/etc/crow.profile
index 14145ffea..a8a00f596 100644
--- a/etc/crow.profile
+++ b/etc/crow.profile
@@ -1,16 +1,13 @@
 # Firejail profile for crow
+# Description: A translator that allows to translate and say selected text using Google, Yandex and Bing translate API
 # This file is overwritten after every install/update
 # Persistent local customizations
 include crow.local
 # Persistent global definitions
 include globals.local
 
-noblacklist ${HOME}/.config/crow
-noblacklist ${HOME}/.cache/gstreamer-1.0
-
 mkdir ${HOME}/.config/crow
 mkdir ${HOME}/.cache/gstreamer-1.0
-
 whitelist ${HOME}/.config/crow
 whitelist ${HOME}/.cache/gstreamer-1.0
 
@@ -23,35 +20,28 @@ include disable-xdg.inc
 
 include whitelist-common.inc
 
-# apparmor
 caps.drop all
-# ipc-namespace
+ipc-namespace
 netfilter
 no3d
-nodbus
 nodvd
 nogroups
 nonewprivs
 noroot
-# nosound
 notv
 nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
-# tracelog
 
 disable-mnt
 private-bin crow
-# private-cache
 private-dev
 private-etc ca-certificates,ssl,machine-id,dconf,nsswitch.conf,resolv.conf,fonts,asound.conf,pulse,pki,crypto-policies
-# private-lib
 private-opt none
 private-tmp
 private-srv none
 
-# memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
diff --git a/etc/nyx.profile b/etc/nyx.profile
index aa3275a00..d5e1e1f84 100644
--- a/etc/nyx.profile
+++ b/etc/nyx.profile
@@ -1,20 +1,18 @@
 # Firejail profile for nyx
+# Description: Command-line status monitor for tor
 # This file is overwritten after every install/update
 # Persistent local customizations
 include nyx.local
 # Persistent global definitions
 include globals.local
 
+noblacklist ${PATH}/python2*
 noblacklist ${PATH}/python3*
-noblacklist /usr/include/python3*
+noblacklist /usr/lib/python2*
 noblacklist /usr/lib/python3*
-noblacklist /usr/local/lib/python3*
-noblacklist /usr/share/python3*
 
 noblacklist ${HOME}/.nyx
-
 mkdir ${HOME}/.nyx
-
 whitelist ${HOME}/.nyx
 
 include disable-common.inc
@@ -24,9 +22,8 @@ include disable-passwdmgr.inc
 include disable-programs.inc
 include disable-xdg.inc
 
-# apparmor
 caps.drop all
-# ipc-namespace
+ipc-namespace
 netfilter
 no3d
 nodbus
@@ -41,18 +38,15 @@ novideo
 protocol unix,inet,inet6
 seccomp
 shell none
-# tracelog
 
 disable-mnt
-private-bin nyx,python
+private-bin nyx,python*
 private-cache
 private-dev
-private-etc passwd,tor
-# private-lib
+private-etc passwd,tor,fonts
 private-opt none
 private-srv none
 private-tmp
 
-# memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-- 
cgit v1.2.3-70-g09d2