diff options
Diffstat (limited to 'config.dot')
-rw-r--r-- | config.dot/firejail/mpv.profile.link | 52 |
1 files changed, 52 insertions, 0 deletions
diff --git a/config.dot/firejail/mpv.profile.link b/config.dot/firejail/mpv.profile.link new file mode 100644 index 0000000..2f95b83 --- /dev/null +++ b/config.dot/firejail/mpv.profile.link @@ -0,0 +1,52 @@ +# Firejail profile for mpv +# Description: Video player based on MPlayer/mplayer2 +# This file is overwritten after every install/update +# Persistent local customizations +include mpv.local +# Persistent global definitions +include globals.local + +noblacklist ${HOME}/.config/mpv +noblacklist ${HOME}/.netrc +noblacklist ${MUSIC} +noblacklist ${VIDEOS} + +# Allow python (blacklisted by disable-interpreters.inc) +noblacklist ${PATH}/python2* +noblacklist ${PATH}/python3* +noblacklist /usr/lib/python2* +noblacklist /usr/lib/python3* +noblacklist /usr/local/lib/python2* +noblacklist /usr/local/lib/python3* + +include disable-common.inc +include disable-devel.inc +include disable-interpreters.inc +include disable-passwdmgr.inc +include disable-programs.inc +include disable-xdg.inc + +#include whitelist-var-common.inc + +# Custom +# allow write operations in non-default folders +#include whitelist-common.local +noblacklist ${HOME}/data +noblacklist /var/data/load + +apparmor +caps.drop all +netfilter +nodbus +# Seems to cause issues with Nvidia drivers sometimes +nogroups +nonewprivs +noroot +nou2f +protocol unix,inet,inet6 +seccomp +shell none +tracelog + +private-bin mpv,youtube-dl,python*,env +private-dev |