diff options
| author | Patrick Spek <p.spek@tyil.nl> | 2020-03-02 13:44:06 +0100 |
|---|---|---|
| committer | Patrick Spek <p.spek@tyil.nl> | 2021-08-14 11:59:31 +0200 |
| commit | 4b769e3a6addf7e2dfaf0f2480a78ebec5746f26 (patch) | |
| tree | a3a0d20969b114cf56fabaefb7f7f2420e376642 /.local/etc | |
| parent | 7ccb879fb2f03be90b1e63f07e9d84a4daf8cb59 (diff) | |
Try Firefox in a managed directory again
Diffstat (limited to '.local/etc')
| -rw-r--r-- | .local/etc/firejail/firefox.profile | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/.local/etc/firejail/firefox.profile b/.local/etc/firejail/firefox.profile new file mode 100644 index 0000000..3fcb6d9 --- /dev/null +++ b/.local/etc/firejail/firefox.profile @@ -0,0 +1,19 @@ +# Limited access to homedir contents +whitelist ~/.config/firefox +whitelist ~/.config/gtk-3.0 +whitelist ~/.mozilla/firefox +whitelist ~/documents +whitelist ~/downloads/firefox +whitelist ~/pictures + +read-only ~/.config/gtk-3.0 +read-only ~/documents +read-only ~/pictures + +# Use private system resources +private-tmp + +# Remove executable bits +noexec /tmp + +caps.drop all |