github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-21 06:45:29 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 1

Add spectacle's profile (#3717)

Browse source 
* Update firecfg.config

* Update disable-programs.inc

* Create spectacle.profile
This commit is contained in:
Neo00001 2020-11-02 10:30:41 +00:00 committed by GitHub
parent d710a6c295
commit 9377a80fd6
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 66 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
etc/inc/disable-programs.inc
View file

@ -372,6 +372,7 @@ blacklist ${HOME}/.config/smuxi
blacklist ${HOME}/.config/snox
blacklist ${HOME}/.config/sound-juicer
blacklist ${HOME}/.config/specialmailcollectionsrc
blacklist ${HOME}/.config/spectaclerc
blacklist ${HOME}/.config/spotify
blacklist ${HOME}/.config/sqlitebrowser
blacklist ${HOME}/.config/stellarium

64
etc/profile-m-z/spectacle.profile Normal file
View file

@ -0,0 +1,64 @@
# Firejail profile for spectacle
# Description: Spectacle is a simple application for capturing desktop screenshots.
# This file is overwritten after every install/update
# Persistent local customizations
include spectacle.local
# Persistent global definitions
include globals.local
# Uncomment the following lines to use sharing services.
#netfilter
#ignore net none
#private-etc ca-certificates,crypto-policies,pki,resolv.conf,ssl
#protocol unix,inet,inet6
noblacklist ${HOME}/.config/spectaclerc
noblacklist ${PICTURES}
include disable-common.inc
include disable-devel.inc
include disable-exec.inc
include disable-interpreters.inc
include disable-passwdmgr.inc
include disable-programs.inc
include disable-xdg.inc
mkfile ${HOME}/.config/spectaclerc
whitelist ${HOME}/.config/spectaclerc
whitelist ${PICTURES}
include whitelist-common.inc
include whitelist-runuser-common.inc
include whitelist-usr-share-common.inc
include whitelist-var-common.inc
apparmor
caps.drop all
machine-id
net none
no3d
nodvd
nogroups
nonewprivs
noroot
nosound
notv
nou2f
novideo
protocol unix
seccomp
shell none
tracelog
disable-mnt
private-bin spectacle
private-cache
private-dev
private-etc alternatives,fonts,ld.so.conf
private-tmp
dbus-user filter
dbus-user.own org.kde.spectacle
dbus-user.talk org.freedesktop.FileManager1
#dbus-user.talk org.kde.JobViewServer
#dbus-user.talk org.kde.kglobalaccel
dbus-system none

1
src/firecfg/firecfg.config
View file

@ -668,6 +668,7 @@ soffice
sol
sound-juicer
soundconverter
spectacle
spectral
spotify
sqlitebrowser