blob: ff070f0ca0d5781869f61efe1b7dda98dc4d125b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
noblacklist ~/.mozilla
noblacklist ~/.cache/mozilla
include /etc/firejail/disable-common.inc
include /etc/firejail/disable-programs.inc
include /etc/firejail/disable-devel.inc
caps.drop all
netfilter
nonewprivs
noroot
protocol unix,inet,inet6,netlink
seccomp
tracelog
mkdir ~/.mozilla
whitelist ~/.mozilla
mkdir ~/.cache/mozilla/firefox
whitelist ~/.cache/mozilla/firefox
whitelist ~/dwhelper
whitelist ~/.pentadactylrc
whitelist ~/.pentadactyl
whitelist ~/.vimperator
whitelist ~/.vimperatorrc
whitelist ~/.pki
# allowed _payload_ home directories
whitelist ~/downloads
whitelist ~/webarchive
whitelist ~/share
include /etc/firejail/whitelist-common.inc
|
