aboutsummaryrefslogtreecommitdiff
path: root/firejail/.config/firejail/firefox.profile
diff options
context:
space:
mode:
Diffstat (limited to 'firejail/.config/firejail/firefox.profile')
-rw-r--r--firejail/.config/firejail/firefox.profile30
1 files changed, 30 insertions, 0 deletions
diff --git a/firejail/.config/firejail/firefox.profile b/firejail/.config/firejail/firefox.profile
new file mode 100644
index 0000000..c7a964f
--- /dev/null
+++ b/firejail/.config/firejail/firefox.profile
@@ -0,0 +1,30 @@
+noblacklist ~/.mozilla
+noblacklist ~/.cache/mozilla
+
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-devel.inc
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+protocol unix,inet,inet6,netlink
+seccomp
+tracelog
+
+mkdir ~/.mozilla
+whitelist ~/.mozilla
+mkdir ~/.cache/mozilla/firefox
+whitelist ~/.cache/mozilla/firefox
+whitelist ~/dwhelper
+whitelist ~/.pentadactylrc
+whitelist ~/.pentadactyl
+whitelist ~/.pki
+
+# allowed _payload_ home directories
+whitelist ~/downloads
+whitelist ~/webarchive
+whitelist ~/share
+
+include /etc/firejail/whitelist-common.inc