Commit 91e11d15 authored by sarneaud's avatar sarneaud

Update profiles to use the new noblacklist command.

parent 829d9e0c
# Chromium browser profile
noblacklist ${HOME}/.config/chromium
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc chromium
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-history.inc
netfilter
......
# FileZilla profile
noblacklist ${HOME}/.filezilla
noblacklist ${HOME}/.config/filezilla
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc .filezilla
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-history.inc
caps.drop all
seccomp
......
# Firejail profile for Mozilla Firefox (Iceweasel in Debian)
noblacklist ${HOME}/.mozilla
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc .mozilla
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-history.inc
caps.drop all
seccomp
......
# Midory browser profile
# Midori browser profile
noblacklist ${HOME}/.config/midori
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc midori
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-history.inc
caps.drop all
seccomp
......
# Chromium browser profile
noblacklist ${HOME}/.config/opera
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc opera
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-history.inc
netfilter
noroot
......
# generic server profile
# it allows /sbin and /usr/sbin directories - this is where servers are installed
include /etc/firejail/disable-mgmt.inc sbin
noblacklist /sbin
noblacklist /usr/sbin
include /etc/firejail/disable-mgmt.inc
private
private-dev
seccomp
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment