commit f6cb226ac1e5a1074f8b8b84486169d06edc91b3 parent 9c83de1a8882aa7413371808252e03e04c4b8a06 Author: Anders Damsgaard <anders@adamsgaard.dk> Date: Sat, 23 Mar 2019 08:29:50 +0100 Add custom firejail profile for signal Diffstat:
| A | links/.config/firejail/signal-desktop.profile | | | 38 | ++++++++++++++++++++++++++++++++++++++ |
1 file changed, 38 insertions(+), 0 deletions(-)
diff --git a/links/.config/firejail/signal-desktop.profile b/links/.config/firejail/signal-desktop.profile @@ -0,0 +1,38 @@ +# Firejail profile for signal-desktop +# This file is overwritten after every install/update +# Persistent local customizations +include signal-desktop.local +# Persistent global definitions +include globals.local + +noblacklist ${HOME}/.config/Signal + +include disable-common.inc +include disable-devel.inc +include disable-interpreters.inc +include disable-programs.inc +include disable-passwdmgr.inc + +mkdir ${HOME}/.config/Signal +whitelist ${HOME}/tmp +whitelist ${HOME}/.config/Signal +include whitelist-common.inc +include whitelist-var-common.inc + +caps.drop all +netfilter +nodvd +nogroups +nonewprivs +noroot +notv +nou2f +protocol unix,inet,inet6,netlink +seccomp +shell none + +disable-mnt +private-dev +private-tmp + +noexec ${HOME}