First version of the package (Blacknut version 2.7.5)

The package installs: * the Blacknut appimage under /opt/appimages * a blacknut script under /usr/bin * a firejail profile used by the blacknut script if firejail is installed
author: Albin Kauffmann 2020-04-08 11:27:36 +0200
committer: Albin Kauffmann 2020-04-08 11:28:24 +0200
commit: bbaa62166dc538864c4f0cd7955e04b7634f57e9 (patch)
tree: 2065610834d3d74b1ef0e9dc8d9e4319b54f3142 /blacknut-firejail.profile
download: aur-bbaa62166dc538864c4f0cd7955e04b7634f57e9.tar.gz
1 files changed, 41 insertions, 0 deletions
diff --git a/blacknut-firejail.profile b/blacknut-firejail.profile
new file mode 100644
index 000000000000..5d60e05502e2
--- /dev/null
+++ b/blacknut-firejail.profile
@@ -0,0 +1,41 @@
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-programs.inc
+
+apparmor
+caps.drop all
+
+nodbus
+nodvd
+nogroups
+nonewprivs
+
+noroot
+notv
+nou2f
+novideo
+
+protocol unix,inet,inet6
+seccomp
+
+shell none
+
+disable-mnt
+private-dev
+private-tmp
+private-cache
+private-etc alsa,alternatives,asound.conf,ca-certificates,fonts,group,localtime,passwd,pulse,resolv.conf
+
+# Can be used for keeping Blacknut logs (you need to comment private-tmp first)
+#whitelist /tmp/.X11-unix
+#mkdir /tmp/blacknut
+#whitelist /tmp/blacknut
+
+# Allow Blacknut to save its configuration
+mkdir ${HOME}/.config/Blacknut
+whitelist ${HOME}/.config/Blacknut
+
+# Allow access to Pulseaudio configuration
+whitelist ${HOME}/.config/pulse
author	Albin Kauffmann	2020-04-08 11:27:36 +0200
committer	Albin Kauffmann	2020-04-08 11:28:24 +0200
commit	bbaa62166dc538864c4f0cd7955e04b7634f57e9 (patch)
tree	2065610834d3d74b1ef0e9dc8d9e4319b54f3142 /blacknut-firejail.profile
download	aur-bbaa62166dc538864c4f0cd7955e04b7634f57e9.tar.gz