mirror of
https://github.com/netblue30/firejail.git
synced 2026-05-15 14:16:14 -06:00
88652cdb38
Default directories in Firefox 146 and earlier:
* ~/.cache/mozilla # cache files
* ~/.mozilla # config and data
In Firefox 147[1]:
* ~/.cache/mozilla # cache files
* ~/.config/mozilla # config and data
Note that the new location apparently contains the same files as in the
former location (including settings, bookmarks, extensions, etc).
That is, even though the new directory resides in `$XDG_CONFIG_HOME` /
~/.config, it is not solely used for program configuration as described
in the XDG Base Directory specification[2] and `$XDG_DATA_HOME` /
~/.local/share/mozilla is seemingly not used at all (see also the
discussion in the bug tracker[3]).
Commands used to search and replace:
$ perl -pi -e 's/(.* )(\${HOME}\/\.mozilla)(.*)/$1\${HOME}\/.config\/mozilla$3\n$1$2$3/' \
-- \
etc/inc/*.inc \
etc/profile*/*.profile \
Note: The entries in the following profiles were sorted manually:
* etc/inc/disable-common.inc
* etc/inc/disable-programs.inc
* etc/profile-a-l/keepassxc.profile
* etc/profile-a-l/krunner.profile
* etc/profile-m-z/seamonkey.profile
Relates to #7040.
[1] https://www.firefox.com/en-US/firefox/147.0/releasenotes/
[2] https://specifications.freedesktop.org/basedir/latest/
[3] https://bugzilla.mozilla.org/show_bug.cgi?id=259356
40 lines
1.1 KiB
Text
40 lines
1.1 KiB
Text
# Firejail profile for krunner
|
|
# Description: Framework for providing different actions given a string query
|
|
# This file is overwritten after every install/update
|
|
# Persistent local customizations
|
|
include krunner.local
|
|
# Persistent global definitions
|
|
include globals.local
|
|
|
|
# Programs started in krunner run with this generic profile.
|
|
# When a file is opened in krunner, the file viewer runs in its own sandbox
|
|
# with its own profile, if it is sandboxed automatically.
|
|
|
|
#noblacklist ${HOME}/.cache/krunner
|
|
#noblacklist ${HOME}/.cache/krunnerbookmarkrunnerfirefoxdbfile.sqlite*
|
|
#noblacklist ${HOME}/.config/chromium
|
|
noblacklist ${HOME}/.config/krunnerrc
|
|
#noblacklist ${HOME}/.config/mozilla
|
|
noblacklist ${HOME}/.kde/share/config/krunnerrc
|
|
noblacklist ${HOME}/.kde4/share/config/krunnerrc
|
|
#noblacklist ${HOME}/.local/share/baloo
|
|
#noblacklist ${HOME}/.mozilla
|
|
|
|
include disable-common.inc
|
|
#include disable-devel.inc
|
|
#include disable-interpreters.inc
|
|
#include disable-programs.inc
|
|
|
|
include whitelist-var-common.inc
|
|
|
|
caps.drop all
|
|
netfilter
|
|
nogroups
|
|
nonewprivs
|
|
noroot
|
|
protocol unix,inet,inet6
|
|
seccomp
|
|
|
|
#private-cache
|
|
|
|
restrict-namespaces
|