From e08c80d0a9fbf3def45c5957a7048d597de6e966 Mon Sep 17 00:00:00 2001
From: Fred Barclay <Fred-Barclay@users.noreply.github.com>
Date: Fri, 14 Apr 2017 11:20:08 -0500
Subject: Added nylas profile (see #1215)

---
 etc/disable-programs.inc |  2 ++
 etc/nylas.profile        | 29 +++++++++++++++++++++++++++++
 2 files changed, 31 insertions(+)
 create mode 100644 etc/nylas.profile

(limited to 'etc')

diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 7939fd520..1d5380b42 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -33,6 +33,7 @@ blacklist ${HOME}/.config/Luminance
 blacklist ${HOME}/.config/Meltytech
 blacklist ${HOME}/.config/Mousepad
 blacklist ${HOME}/.config/Mumble
+blacklist ${HOME}/.config/Nylas Mail
 blacklist ${HOME}/.config/QuiteRss
 blacklist ${HOME}/.config/QuiteRssrc
 blacklist ${HOME}/.config/Slack
@@ -260,6 +261,7 @@ blacklist ${HOME}/.mutt
 blacklist ${HOME}/.mutt/muttrc
 blacklist ${HOME}/.muttrc
 blacklist ${HOME}/.nv
+blacklist $(HOME)/.nylas-mail
 blacklist ${HOME}/.openshot
 blacklist ${HOME}/.openshot_qt
 blacklist ${HOME}/.opera
diff --git a/etc/nylas.profile b/etc/nylas.profile
new file mode 100644
index 000000000..21c48c95c
--- /dev/null
+++ b/etc/nylas.profile
@@ -0,0 +1,29 @@
+# This file is overwritten during software install.
+# Persistent customizations should go in a .local file.
+include /etc/firejail/nylas.local
+
+# Firejail profile for Nylas Mail
+noblacklist ~/.config/Nylas Mail
+noblacklist ~/.nylas-mail
+
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+whitelist ~/.config/Nylas Mail
+whitelist ~/.nylas-mail
+whitelist ${DOWNLOADS}
+include /etc/firejail/whitelist-common.inc
+
+caps.drop all
+netfilter
+nogroups
+nonewprivs
+noroot
+nosound
+protocol unix,inet,inet6,netlink
+seccomp
+shell none
+
+private-dev
-- 
cgit v1.2.3-54-g00ecf