Commit c93cca65 authored by netblue30's avatar netblue30

profile update

parent 85207135
# Audacious profile
# Audacious media player profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......
# BitlBee profile
# BitlBee instant messaging profile
noblacklist /sbin
noblacklist /usr/sbin
include /etc/firejail/disable-mgmt.inc
......@@ -8,3 +8,4 @@ protocol unix,inet,inet6
private
private-dev
seccomp
netfilter
# cherrytree note taking application
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-devel.inc
whitelist ${HOME}/cherrytree
mkdir ~/.config
mkdir ~/.config/cherrytree
......@@ -5,10 +11,6 @@ whitelist ${HOME}/.config/cherrytree/
mkdir ~/.local
mkdir ~/.local/share
whitelist ${HOME}/.local/share/
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-devel.inc
caps.drop all
seccomp
protocol unix,inet,inet6,netlink
......@@ -16,3 +18,4 @@ netfilter
tracelog
noroot
include /etc/firejail/whitelist-common.inc
nosound
# Clementine profile
# Clementine media player profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......
# Firejail profile for Mozilla Firefox (Iceweasel in Debian)
# Firejail profile for Conkeror web browser profile
noblacklist ${HOME}/.conkeror.mozdev.org
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
......
# DeaDBeeF profile
# DeaDBeeF media player profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......
# deluge profile
# deluge bittorernt client profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......@@ -14,5 +14,6 @@ seccomp
protocol unix,inet,inet6
netfilter
noroot
nosound
# Empathy profile
# Empathy instant messaging profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......@@ -8,3 +8,5 @@ blacklist ${HOME}/.wine
caps.drop all
seccomp
protocol unix,inet,inet6
netfilter
# evince profile
# evince pdf reader profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......@@ -13,3 +13,5 @@ caps.drop all
seccomp
protocol unix,inet,inet6
noroot
nosound
# fbreader profile
# fbreader ebook reader profile
noblacklist ${HOME}/.FBReader
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
......@@ -15,4 +15,5 @@ seccomp
protocol unix,inet,inet6
netfilter
noroot
nosound
# FileZilla profile
# FileZilla ftp profile
noblacklist ${HOME}/.filezilla
noblacklist ${HOME}/.config/filezilla
include /etc/firejail/disable-mgmt.inc
......@@ -12,5 +12,7 @@ seccomp
protocol unix,inet,inet6
noroot
netfilter
nosound
......@@ -12,6 +12,7 @@ private-dev
whitelist /tmp/.X11-unix
seccomp
tracelog
netfilter
mkdir ~/.hedgewars
whitelist ~/.hedgewars
# HexChat profile
# HexChat instant messaging profile
noblacklist ${HOME}/.config/hexchat
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
......
......@@ -25,3 +25,5 @@ caps.drop all
seccomp
protocol unix,inet,inet6
noroot
netfilter
# qbittorrent profile
# qbittorrent bittorrent profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......@@ -14,4 +14,6 @@ seccomp
protocol unix,inet,inet6
netfilter
noroot
nosound
......@@ -9,3 +9,5 @@ caps.drop all
seccomp
protocol unix,inet,inet6
noroot
netfilter
# Rhythmbox profile
# Rhythmbox media player profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......@@ -13,3 +13,5 @@ caps.drop all
seccomp
protocol unix,inet,inet6
noroot
netfilter
# rtorrent profile
# rtorrent bittorrent profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......@@ -9,3 +9,4 @@ seccomp
protocol unix,inet,inet6
netfilter
noroot
nosound
# Spotify profile
# Spotify media player profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......
# Telegram profile
# Telegram IRC profile
noblacklist ${HOME}/.TelegramDesktop
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
......@@ -10,6 +10,7 @@ caps.drop all
seccomp
protocol unix,inet,inet6
noroot
netfilter
whitelist ~/Downloads/Telegram Desktop
mkdir ${HOME}/.TelegramDesktop
......
# Totem profile
# Totem media player profile
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
include /etc/firejail/disable-common.inc
......@@ -13,3 +13,4 @@ caps.drop all
seccomp
protocol unix,inet,inet6
noroot
netfilter
......@@ -15,6 +15,8 @@ protocol unix,inet,inet6
netfilter
noroot
tracelog
nosound
......@@ -15,4 +15,6 @@ protocol unix,inet,inet6
netfilter
noroot
tracelog
nosound
# VLC profile
# VLC media player profile
noblacklist ${HOME}/.config/vlc
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
......@@ -14,3 +14,4 @@ caps.drop all
seccomp
protocol unix,inet,inet6
noroot
netfilter
# Weechat profile (Debian)
# Weechat IRC profile (Debian)
include /etc/firejail/weechat.profile
# Weechat profile
# Weechat IRC profile
noblacklist ${HOME}/.weechat
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-common.inc
......@@ -9,3 +9,4 @@ seccomp
protocol unix,inet,inet6
netfilter
noroot
netfilter
# XChat profile
# XChat IRC profile
noblacklist ${HOME}/.config/xchat
include /etc/firejail/disable-mgmt.inc
include /etc/firejail/disable-secret.inc
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment