dotfiles

configuration files for shell, text editor, graphical environment, etc.
git clone git://src.adamsgaard.dk/dotfiles
Log | Files | Refs | Submodules | README | LICENSE

surf.config (745B)

      1 # Firejail profile for surf
      2 # Persistent local customizations
      3 include surf.local
      4 # Persistent global definitions
      5 include globals.local
      6 
      7 noblacklist ${HOME}/.config/surf
      8 
      9 include disable-common.inc
     10 include disable-devel.inc
     11 include disable-passwdmgr.inc
     12 include disable-programs.inc
     13 
     14 mkdir ${HOME}/.config/surf
     15 whitelist ${HOME}/tmp
     16 whitelist ${HOME}/.config/surf
     17 include whitelist-common.inc
     18 
     19 caps.drop all
     20 netfilter
     21 nodvd
     22 nonewprivs
     23 noroot
     24 notv
     25 nou2f
     26 protocol unix,inet,inet6,netlink
     27 seccomp
     28 shell none
     29 tracelog
     30 
     31 disable-mnt
     32 private-bin ls,surf,sh,bash,curl,dmenu,printf,sed,sleep,st,stterm,xargs,xprop
     33 private-dev
     34 private-etc passwd,group,hosts,resolv.conf,fonts,ssl,pki,ca-certificates,crypto-policies
     35 private-tmp
     36 
     37 noexec ${HOME}
     38 noexec /tmp