diff options
author | jc_gargma <jc_gargma@iserlohn-fortress.net> | 2020-06-29 02:22:14 -0700 |
---|---|---|
committer | jc_gargma <jc_gargma@iserlohn-fortress.net> | 2020-06-29 02:22:14 -0700 |
commit | 56b07a8606b692da2f7937d133ead6ccc93182f0 (patch) | |
tree | d6d1cf69f787eaa6316353fc92bee0fa1bf9e3d1 /profiles | |
parent | Allow vlc to read from pictures (diff) | |
download | firejail-profiles-56b07a8606b692da2f7937d133ead6ccc93182f0.tar.xz |
Update profiles for cataclysm and singularity
Diffstat (limited to 'profiles')
-rw-r--r-- | profiles/cataclysm.profile | 8 | ||||
-rw-r--r-- | profiles/singularity.profile | 20 |
2 files changed, 20 insertions, 8 deletions
diff --git a/profiles/cataclysm.profile b/profiles/cataclysm.profile index 5773161..48ea340 100644 --- a/profiles/cataclysm.profile +++ b/profiles/cataclysm.profile @@ -8,8 +8,16 @@ noblacklist ${HOME}/.config/cataclysm-dda noblacklist ${HOME}/.local/share/cataclysm-dda mkdir ${HOME}/.config/cataclysm-dda mkdir ${HOME}/.local/share/cataclysm-dda +mkdir ${HOME}/.local/share/cataclysm-dda/font +mkdir ${HOME}/.local/share/cataclysm-dda/gfx +mkdir ${HOME}/.local/share/cataclysm-dda/mods +mkdir ${HOME}/.local/share/cataclysm-dda/sound whitelist ${HOME}/.config/cataclysm-dda whitelist ${HOME}/.local/share/cataclysm-dda +read-only ${HOME}/.local/share/cataclysm-dda/font +read-only ${HOME}/.local/share/cataclysm-dda/gfx +read-only ${HOME}/.local/share/cataclysm-dda/mods +read-only ${HOME}/.local/share/cataclysm-dda/sound seccomp !name_to_handle_at diff --git a/profiles/singularity.profile b/profiles/singularity.profile index e1785eb..f017d21 100644 --- a/profiles/singularity.profile +++ b/profiles/singularity.profile @@ -4,16 +4,20 @@ include singularity.local # Persistent global definitions include globals.local -noblacklist ${PATH}/python2* -noblacklist /usr/include/python2* -noblacklist /usr/lib/python2* -noblacklist /usr/local/lib/python2* -noblacklist /usr/share/python2 +noblacklist ${PATH}/python* +noblacklist /usr/include/python* +noblacklist /usr/lib/python* +noblacklist /usr/local/lib/python* +noblacklist /usr/share/python -noblacklist ${HOME}/.endgame +noblacklist ${HOME}/.config/singularity +noblacklist ${HOME}/.local/share/singularity -mkdir ${HOME}/.endgame -whitelist ${HOME}/.endgame +mkdir ${HOME}/.config/singularity +mkdir ${HOME}/.local/share/singularity + +whitelist ${HOME}/.config/singularity +whitelist ${HOME}/.local/share/singularity ignore memory-deny-write-execute |