mirror of
https://github.com/netblue30/firejail.git
synced 2026-05-21 06:45:29 -06:00
051be0926c
* Fix 'allow python' in xpra * Fix 'allow python' in xplayer * Fix 'allow python' in xed * Fix 'allow python' in uzbl-browser * Fix 'allow python' in transmission-remote-cli * Fix 'allow python' in torbrowser-launcher * fix 'allow python' in subdownloader * Fix 'allow python' in steam * Fix 'allow python' in soundconverter * Fix 'allow python' in sdat2img * Fix 'allow python' in scribus * Fix 'allow python' in ranger * Fix 'allow python' in qutebrowser * Fix 'allow python' in qbittorrent * Fix 'allow python' in pybitmessage * Fix 'allow python' in playonlinux * Fix 'allow python' in pitivi * Fix 'allow python' in pithos * Fix 'allow python' in picard * Fix 'allow python' in openshot * Fix 'allow python' in onionshare-gui * Fix 'allow python' in obs * Fix 'allow python' in nitroshare * Fix 'allow python' in nemo * Fix 'allow python' in nautilus * Fix 'allow python' in natron * Fix 'allow python' in ms-office * Fix 'allow python' in mpDris2 * Fix 'allow python' in mendeleydesktop * Fix 'allow python' in macrofusion * Fix 'allow python' in lollypop * Fix 'allow python' in liferea * Fix 'allow python' in krita * Fix 'allow python' in kodi * Fix 'allow python' in inkscape * Fix 'allow python' in hexchat * Fix 'allow python' in gnome-schedule * Fix 'allow python' in gnome-music * Fix 'allow python' in gconf * Fix 'allow python' in gajim * Fix 'allow python' in font-manager * Fix 'allow python' in fontforge * Fix 'allow python' in flowblade * Fix 'allow python' in filezilla * Fix 'allow python' in exfalso * Fix 'allow python' in electrum * Fix 'allow python' in display * Fix 'allow python' in d-feet * Fix 'allow python' in deluge * Fix 'allow python' in cherrytree * Fix 'allow python' in catfish * Fix 'allow python' in caja * Fix 'allow python' in blender * Fix 'allow python' in bleachbit * Fix 'allow python' in authenticator * Fix 'allow python' in arm
55 lines
1.1 KiB
Text
55 lines
1.1 KiB
Text
# Firejail profile for inkscape
|
|
# Description: Vector-based drawing program
|
|
# This file is overwritten after every install/update
|
|
# Persistent local customizations
|
|
include inkscape.local
|
|
# Persistent global definitions
|
|
include globals.local
|
|
|
|
noblacklist ${HOME}/.cache/inkscape
|
|
noblacklist ${HOME}/.config/inkscape
|
|
noblacklist ${HOME}/.inkscape
|
|
noblacklist ${DOCUMENTS}
|
|
noblacklist ${PICTURES}
|
|
|
|
# Allow python (blacklisted by disable-interpreters.inc)
|
|
noblacklist ${PATH}/python2*
|
|
noblacklist ${PATH}/python3*
|
|
noblacklist /usr/lib/python2*
|
|
noblacklist /usr/lib/python3*
|
|
noblacklist /usr/local/lib/python2*
|
|
noblacklist /usr/local/lib/python3*
|
|
|
|
include disable-common.inc
|
|
include disable-devel.inc
|
|
include disable-exec.inc
|
|
include disable-interpreters.inc
|
|
include disable-passwdmgr.inc
|
|
include disable-programs.inc
|
|
include disable-xdg.inc
|
|
|
|
include whitelist-var-common.inc
|
|
|
|
apparmor
|
|
caps.drop all
|
|
ipc-namespace
|
|
machine-id
|
|
net none
|
|
nodbus
|
|
nodvd
|
|
nogroups
|
|
nonewprivs
|
|
noroot
|
|
nosound
|
|
notv
|
|
nou2f
|
|
novideo
|
|
protocol unix
|
|
seccomp
|
|
shell none
|
|
|
|
# private-bin inkscape,potrace,python* - problems on Debian stretch
|
|
private-dev
|
|
private-tmp
|
|
|
|
# memory-deny-write-execute
|