firejail-profiles icon indicating copy to clipboard operation
firejail-profiles copied to clipboard

Published 20 hours ago verified publisher icon chiraag-nataraj

Tvheadend profile

Open Bundy01 opened this issue 5 years ago • 0 comments

Name of the program Tvheadend

Website https://tvheadend.org/

Already available in stock firejail? Not present

Additional info

Here is the profile I created. The problem is on the 'private-bin' line. If I decomment it, the program does not start. I would like to know the programs in "/user/bin" that are essential for the proper functioning of Tvheadend.

# Firejail profile for Tvheadhend
# This file is overwritten after every install/update
quiet
# Persistent local customizations
include tvheadend.local
# Persistent global definitions
include globals.local

noblacklist ${HOME}/.hts
blacklist ${HOME}/Public

include disable-common.inc
include disable-devel.inc
include disable-passwdmgr.inc
include disable-programs.inc
include disable-interpreters.inc
include disable-exec.inc
include disable-xdg.inc

mkdir ${HOME}/.hts
whitelist ${HOME}/.hts

apparmor
caps.drop all
netfilter
nodvd
nogroups
nonewprivs
noroot
nou2f
#protocol unix,inet,inet6
machine-id

disable-mnt
#private-bin tvheadend,tv_grab_file,sh
private-dev
private-tmp
private-etc alternatives

Thank you very much.

Bundy01 avatar Aug 29 '19 17:08 Bundy01