pirate486743186
06452ce01a
bulk renaming electron to electron-common ( #5700 )
...
Co-authored-by: pirate486743186 <>
2023-03-01 07:59:37 +00:00
glitsj16
1783cda6aa
rsync-download_only: fix local override name ( #5695 )
2023-02-28 02:21:44 +00:00
pirate486743186
854e54fb59
minor clarify userns comments ( #5686 )
...
Co-authored-by: pirate486743186 <>
2023-02-26 02:59:23 +00:00
glitsj16
a50f1fb70c
parsecd: ordering fixes ( #5682 )
2023-02-25 22:58:09 +00:00
netblue30
9b64b76cc9
Merge pull request #5646 from NetSysFire/parsecd
...
New profile: parsecd
2023-02-24 20:48:18 -05:00
netblue30
d657245f73
Merge pull request #5674 from kmk3/fix-ws-add-editorconfig
...
build: Fix whitespace and add .editorconfig
2023-02-24 20:44:48 -05:00
netblue30
2531759b80
more private-etc
2023-02-24 20:37:35 -05:00
NetSysFire
6202f58ad0
parsecd.profile: more white and blacklisting
2023-02-24 16:24:49 +01:00
glitsj16
7ed7d6dafd
New profiles: qpdf and redirects ( #5675 )
...
* Create qpdf.profile and redirects
qpdf (CLI) provides PDF metadata cleaning.
See privacy-handbuch.de[1] for details.
The site offers pdf-meta-clean.sh[2], which works very well with
firejailed qpdf.
[1] https://www.privacy-handbuch.de/handbuch_43a.htm
[2] https://www.privacy-handbuch.de/download/pdf-meta-clean.sh
* RELNOTES: add qpdf and redirects to new profiles section
* firecfg.config: add qpdf and redirects
* qpdf: use 'seccomp socket' instead of 'protocol unix'
See https://github.com/netblue30/firejail/issues/639 . Thanks @rusty-snake in code review.
2023-02-23 12:28:41 +00:00
glitsj16
7ca54d24bb
apostrophe: drop whitelist covered by wusc ( #5671 )
2023-02-23 12:28:01 +00:00
glitsj16
1e059fe4da
disable-common.inc: add systemd v253 blacklists ( #5669 )
...
Arch Linux got systemd v253:
05d0aedb2b
2023-02-23 12:27:15 +00:00
Kelvin M. Klann
452d70cc77
Trim trailing whitespace
...
Commands used to search and replace:
$ git grep -Ilz '[[:blank:]]$' |
xargs -0 -I '{}' sh -c "printf '%s\n' \"\$(sed -E \
's/[[:blank:]]+$//' '{}')\" >'{}'"
This fixes all of the "trailing whitespace" errors raised by git:
$ git diff --check 4b825dc642cb6eb9a060e54bf8d69288fbee4904..HEAD |
grep '^[^+]' | cut -f 3 -d : | LC_ALL=C sort | uniq -c
72 space before tab in indent.
4 trailing whitespace.
2023-02-19 20:57:24 -03:00
Kelvin M. Klann
3812c139a6
Fix EOL at EOF
...
Commands used to search and replace:
$ git grep -Ilz '.' | xargs -0 -I '{}' sh -c \
"printf '%s\n' \"\$(cat '{}')\" >'{}'"
The above commands ensure that there is exaclty 1 line terminator at EOF
(rather than 0 or more than 1) on all non-empty text files.
This fixes all of the "new blank line at EOF" errors raised by git:
$ git diff --check 4b825dc642cb6eb9a060e54bf8d69288fbee4904..HEAD |
grep '^[^+]' | cut -f 3 -d : | LC_ALL=C sort | uniq -c
21 new blank line at EOF.
72 space before tab in indent.
4 trailing whitespace.
2023-02-19 20:57:12 -03:00
NetSysFire
9fa9d08887
New profile: parsecd
2023-02-18 11:42:55 -03:00
netblue30
80bc00e40f
merges, testing, private-etc
2023-02-16 08:21:50 -05:00
glitsj16
7da0078e6e
wusc: allow hyphenation ( #5666 )
2023-02-15 23:13:38 +00:00
glitsj16
0bbdbf4b77
com.github.johnfactotum.Foliate: fix .local include ( #5665 )
2023-02-15 23:12:21 +00:00
glitsj16
bb3f88606b
qutebrowser: allow userscripts by default ( #5649 )
...
Fixes #5639 .
qutebrowser: drop apparmor
Suggested in PR review.
2023-02-15 01:59:34 +00:00
netblue30
df6ea884f1
merges, disable sort.py in profile checks temporarely, two more private-etc profiles
2023-02-14 09:17:00 -05:00
netblue30
ff5539bf8b
Merge pull request #5653 from slowpeek/master
...
disable-programs.inc: blacklist sendgmail config
2023-02-14 09:11:14 -05:00
netblue30
262ab3ab9e
Merge pull request #5660 from glitsj16/tmc-fix
...
transmission-cli: allow web client
2023-02-14 09:09:24 -05:00
glitsj16
bae8ee2dc1
transmission-cli: allow web client
2023-02-14 09:09:49 -03:00
Netcarver
50d48c1f13
Prevent access to LUKS keyfile
2023-02-14 11:23:44 +00:00
slowpeek
57a2628281
Blacklist sendgmail config
...
sendgmail is a cli tool by Google that "uses Gmail in order to mimic
sendmail for git send-email" as per its own description. In other words it
is a basic sendmail replacement with OAuth2 support to send emails from
Gmail accounts.
https://github.com/google/gmail-oauth2-tools/tree/master/go/sendgmail
Config files location depends on "xdg" build tag. Without the tag it would
be "~/.sendgmail.*". With the tag it is either under
"$XDG_CONFIG_HOME/sendgmail" if set or "~/.config/sendgmail" otherwise.
2023-02-11 01:40:03 +02:00
netblue30
29da82d08a
private-etc: kdiff3, gzip, gunzip, tar etc
2023-02-10 14:38:57 -05:00
netblue30
8983cff10a
private-etc: more on gcrypt
2023-02-09 10:50:47 -05:00
netblue30
da724429e0
private-etc: moving gcrypt from tls-ca to x11 group
2023-02-08 18:05:19 -05:00
netblue30
7176e6324d
private-etc: libreoffice, audacity, forzen-bubble, transmission, md5sum/sha512sum, more sysutils testing, fix electron-hardened.inc.profile
2023-02-08 17:50:44 -05:00
glitsj16
50d31f1de4
re-fix private-etc
2023-02-06 17:10:04 +00:00
netblue30
acb0154ea2
private-etc: pushing vulkan into games group
2023-02-06 08:55:36 -05:00
netblue30
740f502aee
Merge pull request #5642 from glitsj16/private-etc-ephemeral
...
ephemeral: use newly introduced private-etc @groups syntax
2023-02-06 08:47:34 -05:00
netblue30
4194ebfb75
Merge branch 'master' into private-etc-fixes
2023-02-06 08:46:28 -05:00
glitsj16
9e62192877
ephemeral: use newly introduced private-etc @groups syntax
2023-02-06 10:54:21 +00:00
netblue30
2e4e9d13ad
private-etc: java directory fixes
2023-02-05 21:15:20 -05:00
netblue30
0f996ea4de
private-etc: groups modified
2023-02-05 20:48:48 -05:00
glitsj16
f9c009e96f
xiphos: fix private-etc
...
There is no `/etc/ssli` AFAIK. Existing typo prior to private-etc rework likely caused this.
2023-02-05 23:01:01 +00:00
glitsj16
32d5ff5e1f
whois: fix private-etc
...
There is no `/etc/jwhois.conf` AFAIK. Existing typo prior to private-etc rework likely caused this.
2023-02-05 22:58:40 +00:00
glitsj16
81f884776f
marker: fix private-etc
...
`dconfgtk-3.0` was missing a `,` prior to the private-etc rework.
2023-02-05 22:53:28 +00:00
glitsj16
aea2109b86
ghostwriter: fix private-etc
...
There is no `/etc/groups` AFAIK. Existing typo prior to private-etc rework likely caused this.
2023-02-05 22:49:23 +00:00
glitsj16
2588d512ed
email-common: fix private-etc
...
There is no `/etc/groups` AFAIK. Existing typo prior to private-etc rework likely caused this.
2023-02-05 22:42:36 +00:00
glitsj16
5f01eb1870
discord-common: fix private-etc
...
`passwd` is already in @default group.
2023-02-05 22:40:58 +00:00
glitsj16
001f54102c
aria2c: fix private-etc
...
There is no `/etc/groups` AFAIK. Existing typo prior to private-etc rework likely caused this.
2023-02-05 22:35:24 +00:00
netblue30
5d0822c52c
private-etc: big profile changes
2023-02-05 10:17:26 -05:00
netblue30
4b2a38bc2a
Merge pull request #5635 from kmk3/dc-add-ro-editor-browser
...
disable-common.inc: add more ro editor/browser paths
2023-01-31 18:02:37 -05:00
netblue30
a185042808
Merge pull request #5631 from glitsj16/inkscape
...
inkscape: additional hardening and settings saving via D-Bus
2023-01-31 18:01:21 -05:00
glitsj16
00afe15594
Merge branch 'netblue30:master' into warzone2100
2023-01-31 02:32:32 +00:00
glitsj16
c001159947
inkscape: rebase and drop mdwe comment
2023-01-31 02:31:02 +00:00
glitsj16
ad9cf975ae
Merge branch 'netblue30:master' into inkscape
2023-01-31 02:25:56 +00:00
Kelvin M. Klann
f253f90d1d
disable-common.inc: make ~/.config/nano read-only
...
Similarly to the existing ~/.nanorc entry.
Taken from nano.profile.
2023-01-30 20:05:35 -03:00
Kelvin M. Klann
7f834c4cd3
disable-common.inc: add more ro editor/browser paths
...
Move some paths from mutt.profile and neomutt.profile.
Added on commit 6b9bfad37#3849 .
Misc: This is a follow-up to #5626 .
2023-01-30 19:19:50 -03:00
