From e1f356b2a15b247907a77ef1aa7a552a1471ad61 Mon Sep 17 00:00:00 2001
From: rusty-snake <print_hello_world+Public@protonmail.com>
Date: Sun, 19 Jan 2020 10:26:48 +0100
Subject: harden celluloid.profile

---
 etc/celluloid.profile | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'etc')

diff --git a/etc/celluloid.profile b/etc/celluloid.profile
index 5a3bf0008..d099ba11e 100644
--- a/etc/celluloid.profile
+++ b/etc/celluloid.profile
@@ -24,6 +24,7 @@ include disable-passwdmgr.inc
 include disable-programs.inc
 include disable-xdg.inc
 
+include whitelist-usr-share-common.inc
 include whitelist-var-common.inc
 
 apparmor
@@ -45,3 +46,5 @@ private-etc alternatives,ca-certificates,crypto-policies,dconf,drirc,fonts,gtk-3
 private-dev
 private-tmp
 
+read-only ${HOME}
+read-write ${HOME}/.config/celluloid
-- 
cgit v1.2.3-70-g09d2