diff options
| author | jc_gargma <jc_gargma@iserlohn-fortress.net> | 2020-11-17 21:12:37 -0800 |
|---|---|---|
| committer | jc_gargma <jc_gargma@iserlohn-fortress.net> | 2020-11-17 21:12:37 -0800 |
| commit | a0bf93743858985f7830a1eca8506d2ca748a212 (patch) | |
| tree | 320aa10b8d513bbb3146fccf61d57155b2c13438 /profiles | |
| parent | Fix vlc.local causing vlc to zombie (diff) | |
| download | firejail-profiles-a0bf93743858985f7830a1eca8506d2ca748a212.tar.xz | |
Add warhammer 40k mechanicus profile
Add private-cache to wine-generic
Diffstat (limited to 'profiles')
| -rw-r--r-- | profiles/disable-programs.local | 2 | ||||
| -rw-r--r-- | profiles/generic-wine-game.inc | 1 | ||||
| -rw-r--r-- | profiles/warhammer40k-mechanicus.profile | 26 |
3 files changed, 29 insertions, 0 deletions
diff --git a/profiles/disable-programs.local b/profiles/disable-programs.local index 81b82c5..49410f9 100644 --- a/profiles/disable-programs.local +++ b/profiles/disable-programs.local @@ -20,6 +20,8 @@ blacklist ${HOME}/.config/Proxy Studios/Pandora blacklist ${HOME}/.config/smolbote blacklist ${HOME}/.config/StardewValley blacklist ${HOME}/.config/unity3d +blacklist ${HOME}/.config/unity3d/BulwarkStudios +blacklist ${HOME}/.config/unity3d/BulwarkStudios/Mechanicus blacklist ${HOME}/.config/unity3d/DevespressoGames blacklist ${HOME}/.config/unity3d/DevespressoGames/VambraceColdSoul blacklist ${HOME}/.config/unity3d/Dinosaur Polo Club diff --git a/profiles/generic-wine-game.inc b/profiles/generic-wine-game.inc index 1ed2b27..55676a7 100644 --- a/profiles/generic-wine-game.inc +++ b/profiles/generic-wine-game.inc @@ -49,6 +49,7 @@ shell none tracelog disable-mnt +private-cache private-dev # wine games require passwd private-etc asound.conf,group,localtime,machine-id,passwd,pulse diff --git a/profiles/warhammer40k-mechanicus.profile b/profiles/warhammer40k-mechanicus.profile new file mode 100644 index 0000000..32948eb --- /dev/null +++ b/profiles/warhammer40k-mechanicus.profile @@ -0,0 +1,26 @@ +# This file is overwritten after every install/update +# Persistent local customizations +include warhammer40k-mechanicus.local +# Persistent global definitions +include globals.local + +noblacklist ${HOME}/.config/unity3d +noblacklist ${HOME}/.config/unity3d/BulwarkStudios +noblacklist ${HOME}/.config/unity3d/BulwarkStudios/Mechanicus + +mkdir ${HOME}/.config/unity3d +mkdir ${HOME}/.config/unity3d/BulwarkStudios +mkdir ${HOME}/.config/unity3d/BulwarkStudios/Mechanicus +whitelist ${HOME}/.config/unity3d/BulwarkStudios/Mechanicus +whitelist ${HOME}/games/Warhammer 40k - Mechanicus +read-only ${HOME}/games/Warhammer 40k - Mechanicus + +#ignore machine-id +protocol unix,netlink +seccomp !name_to_handle_at + +ignore memory-deny-write-execute + +ignore noexec ${HOME} + +include generic-game.inc |