aboutsummaryrefslogtreecommitdiff
path: root/config.dot/firejail/mutt.profile.link
diff options
context:
space:
mode:
Diffstat (limited to 'config.dot/firejail/mutt.profile.link')
-rw-r--r--config.dot/firejail/mutt.profile.link66
1 files changed, 39 insertions, 27 deletions
diff --git a/config.dot/firejail/mutt.profile.link b/config.dot/firejail/mutt.profile.link
index 58e126d..a78ce4b 100644
--- a/config.dot/firejail/mutt.profile.link
+++ b/config.dot/firejail/mutt.profile.link
@@ -1,26 +1,29 @@
-# mutt email client profile
+# mutt profile
+blacklist /tmp/.X11-unix
-noblacklist ~/.muttrc
-noblacklist ~/.mutt
-noblacklist ~/.mutt/muttrc
-noblacklist ~/.mailcap
-noblacklist ~/.gnupg
-noblacklist ~/.mail
-noblacklist ~/.Mail
-noblacklist ~/mail
-noblacklist ~/Mail
-noblacklist ~/sent
-noblacklist ~/postponed
-noblacklist ~/.cache/mutt
-noblacklist ~/.w3m
-noblacklist ~/.elinks
-noblacklist ~/.vim
-noblacklist ~/.vimrc
-noblacklist ~/.viminfo
-noblacklist ~/.emacs
-noblacklist ~/.emacs.d
-noblacklist ~/.signature
-noblacklist ~/.bogofilter
+noblacklist /var/mail
+noblacklist /var/spool/mail
+noblacklist ${HOME}/.Mail
+noblacklist ${HOME}/.bogofilter
+noblacklist ${HOME}/.cache/mutt
+noblacklist ${HOME}/.elinks
+noblacklist ${HOME}/.emacs
+noblacklist ${HOME}/.emacs.d
+noblacklist ${HOME}/.gnupg
+noblacklist ${HOME}/.mail
+noblacklist ${HOME}/.mailcap
+noblacklist ${HOME}/.msmtprc
+noblacklist ${HOME}/.mutt
+noblacklist ${HOME}/.muttrc
+noblacklist ${HOME}/.signature
+noblacklist ${HOME}/.vim
+noblacklist ${HOME}/.viminfo
+noblacklist ${HOME}/.vimrc
+noblacklist ${HOME}/.w3m
+noblacklist ${HOME}/Mail
+noblacklist ${HOME}/mail
+noblacklist ${HOME}/postponed
+noblacklist ${HOME}/sent
# custom
quiet
@@ -28,24 +31,33 @@ noblacklist ~/.custom
noblacklist ~/.msmtprc
noblacklist ~/.procmailrc
noblacklist ~/.fetchmailrc
+noblacklist /usr/bin/procmail
+noblacklist /usr/bin/fetchmail
noblacklist /usr/bin/perl
-#noblacklist /usr/bin/cpan*
+noblacklist /usr/bin/cpan*
noblacklist /usr/share/perl*
noblacklist /usr/lib/perl*
-include /etc/firejail/disable-common.inc
-include /etc/firejail/disable-programs.inc
-include /etc/firejail/disable-passwdmgr.inc
-include /etc/firejail/disable-devel.inc
+include disable-common.inc
+include disable-devel.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
caps.drop all
netfilter
+no3d
+nodvd
nogroups
nonewprivs
noroot
nosound
+notv
+nou2f
+novideo
protocol unix,inet,inet6
seccomp
shell none
+writable-run-user
private-dev
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-02 01:05:31 +0000