Created
March 12, 2022 19:49
-
-
Save glitsj16/6b822a30ff1a7dc6de49dc569248c92d to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Firejail profile for issue testing | |
# Persistent local customizations | |
# https://github.com/netblue30/firejail/issues/5032 | |
private ${HOME}/Data/jail | |
whitelist ${HOME}/Data/jail/Downloads | |
# noexec ${HOME} breaks DRM binaries | |
ignore noexec ${HOME} | |
# https://github.com/netblue30/firejail/issues/4965 | |
ignore whitelist /usr/share/mozilla/extensions | |
ignore whitelist /usr/share/webext | |
# disable apparmor while testing | |
ignore apparmor | |
# fully allow D-Bus user access | |
ignore dbus-user none | |
# force using KDE's file dialog | |
env NO_CHROME_KDE_FILE_DIALOG=1 | |
# Redirect | |
# extra hardening on kernels allowing unprivileged userns clone | |
include chromium-common-hardened.inc.profile | |
include chromium.profile |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment