github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-21 06:45:29 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 1

various fixes

Browse source
This commit is contained in:
valoq 2016-11-18 21:23:04 +01:00
parent 5421ef54d0
commit 4d2059df3b
No known key found for this signature in database
GPG key ID: 19F09A0FB865CBD8
8 changed files with 54 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

2
etc/empathy.profile
View file

@ -6,5 +6,7 @@ include /etc/firejail/disable-devel.inc
caps.drop all
netfilter
nonewprivs
nogroups
noroot
protocol unix,inet,inet6
seccomp

6
etc/keepass2.profile Normal file
View file

@ -0,0 +1,6 @@
# keepass password manager profile
#noblacklist ${HOME}/.config/KeePass
#noblacklist ${HOME}/.keepass
include /etc/firejail/keepass.profile

2
etc/kmail.profile
View file

@ -16,4 +16,4 @@ seccomp
tracelog
private-dev
private-tmp
# private-tmp

2
etc/mupdf.profile
View file

@ -16,7 +16,7 @@ net none
shell none
tracelog
#seccomp.keep access,arch_prctl,brk,clone,close,connect,execve,exit_group,fchmod,fchown,fcntl,fstat,futex,getcwd,getpeername,getrlimit,getsockname,getsockopt,lseek,lstat,mlock,mmap,mprotect,munmap,nanosleep,open,poll,prctl,read,recvfrom,recvmsg,restart_syscall,rt_sigaction,rt_sigprocmask,select,sendmsg,set_robust_list,set_tid_address,setresgid,setresuid,shmat,shmctl,shmget,shutdown,socket,stat,sysinfo,uname,unshare,wait4,write,writev
#seccomp.keep access,arch_prctl,brk,clone,close,connect,execve,exit_group,fchmod,fchown,fcntl,fstat,futex,getcwd,getpeername,getrlimit,getsockname,getsockopt,lseek,lstat,mlock,mmap,mprotect,mremap,munmap,nanosleep,open,poll,prctl,read,recvfrom,recvmsg,restart_syscall,rt_sigaction,rt_sigprocmask,select,sendmsg,set_robust_list,set_tid_address,setresgid,setresuid,shmat,shmctl,shmget,shutdown,socket,stat,sysinfo,uname,unshare,wait4,write,writev
private-bin mupdf
private-tmp

20
etc/qemu-launcher.profile Normal file
View file

@ -0,0 +1,20 @@
# qemu-launcher profile
noblacklist ~/.qemu-launcher
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-programs.inc
include /etc/firejail/disable-passwdmgr.inc
caps.drop all
netfilter
nogroups
nonewprivs
noroot
protocol unix,inet,inet6
seccomp
shell none
tracelog
private-tmp

18
etc/qemu-system-x86_64.profile Normal file
View file

@ -0,0 +1,18 @@
# qemu profile
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-programs.inc
include /etc/firejail/disable-passwdmgr.inc
caps.drop all
netfilter
nogroups
nonewprivs
noroot
protocol unix,inet,inet6
seccomp
shell none
tracelog
private-tmp

3
platform/debian/conffiles
View file

@ -79,6 +79,7 @@
/etc/firejail/inox.profile
/etc/firejail/jitsi.profile
/etc/firejail/keepass.profile
/etc/firejail/keepass2.profile
/etc/firejail/keepassx.profile
/etc/firejail/kmail.profile
/etc/firejail/konversation.profile
@ -117,6 +118,8 @@
/etc/firejail/polari.profile
/etc/firejail/psi-plus.profile
/etc/firejail/qbittorrent.profile
/etc/firejail/qemu-launcher.profile
/etc/firejail/qemu-system-x86_64.profile
/etc/firejail/qpdfview.profile
/etc/firejail/qtox.profile
/etc/firejail/quassel.profile

3
src/firecfg/firecfg.config
View file

@ -82,6 +82,8 @@ mupen64plus
wine
dosbox
virtualbox
qemu-launcher
qemu-system-x86_64
# games
0ad
@ -154,6 +156,7 @@ atom-beta
atom
ranger
keepass
keepass2
keepassx
xiphos