Adds custom git profile

author: Silvio Rhatto <rhatto@riseup.net> 2017-09-16 20:18:39 -0300
committer: Silvio Rhatto <rhatto@riseup.net> 2017-09-16 20:18:39 -0300
commit: de50467a2f179ead04a9403033f2dafdcb284865 (patch)
tree: 06e3b5b933ff2a5a22f4302300cc4aa216eb15fa
parent: 8b98e337081056feac5a0989d0763824d1d85d76 (diff)
download: xsession-de50467a2f179ead04a9403033f2dafdcb284865.tar.gz
xsession-de50467a2f179ead04a9403033f2dafdcb284865.tar.bz2
1 files changed, 33 insertions, 0 deletions
diff --git a/config.dot/firejail/git.profile.link b/config.dot/firejail/git.profile.link
new file mode 100644
index 0000000..1521c6b
--- /dev/null
+++ b/config.dot/firejail/git.profile.link
@@ -0,0 +1,33 @@
+# git profile
+quiet
+noblacklist ~/.gitconfig
+noblacklist ~/.ssh
+noblacklist ~/.gnupg
+noblacklist ~/.emacs
+noblacklist ~/.emacs.d
+noblacklist ~/.viminfo
+noblacklist ~/.vim
+
+# custom
+noblacklist ~/.custom/gitconfig
+noblacklist ${PATH}/nc
+noblacklist /tmp/ssh-*
+
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+# allow git to work with dotfiles
+read-write ${HOME}/.dotfiles
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+nogroups
+nosound
+protocol unix,inet,inet6
+seccomp
+shell none
+
+private-dev
author	Silvio Rhatto <rhatto@riseup.net>	2017-09-16 20:18:39 -0300
committer	Silvio Rhatto <rhatto@riseup.net>	2017-09-16 20:18:39 -0300
commit	de50467a2f179ead04a9403033f2dafdcb284865 (patch)
tree	06e3b5b933ff2a5a22f4302300cc4aa216eb15fa
parent	8b98e337081056feac5a0989d0763824d1d85d76 (diff)
download	xsession-de50467a2f179ead04a9403033f2dafdcb284865.tar.gz xsession-de50467a2f179ead04a9403033f2dafdcb284865.tar.bz2