From ec44167ca0de9f0a582ce8d95dbddecf82efe0c7 Mon Sep 17 00:00:00 2001
From: Rahiel Kasim <rahielkasim@gmail.com>
Date: Sun, 10 Jul 2016 11:44:01 +0200
Subject: restrict Dropbox to its own directories

---
 etc/dropbox.profile | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'etc')

diff --git a/etc/dropbox.profile b/etc/dropbox.profile
index 2427c6af8..71e019f8c 100644
--- a/etc/dropbox.profile
+++ b/etc/dropbox.profile
@@ -1,4 +1,5 @@
 # dropbox profile
+noblacklist ~/.config/autostart
 include /etc/firejail/disable-common.inc
 include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-passwdmgr.inc
@@ -8,3 +9,14 @@ nonewprivs
 noroot
 protocol unix,inet,inet6
 seccomp
+
+mkdir ~/Dropbox
+whitelist ~/Dropbox
+mkdir ~/.dropbox
+whitelist ~/.dropbox
+mkdir ~/.dropbox-dist
+whitelist ~/.dropbox-dist
+
+mkdir ~/.config/autostart
+mkfile ~/.config/autostart/dropbox.desktop
+whitelist ~/.config/autostart/dropbox.desktop
-- 
cgit v1.2.3-54-g00ecf