From cf94d506adb430e3b343ba7fc4c5e00a2cfca18f Mon Sep 17 00:00:00 2001
From: Fox in the shell <KellerFuchs@hashbang.sh>
Date: Tue, 2 Aug 2016 19:31:13 +0000
Subject: [PATCH] Provide a firejail profile for mutt

This is part of hashbang/shell-etc#86
---
 .config/firejail/mutt.profile | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)
 create mode 100644 .config/firejail/mutt.profile

diff --git a/.config/firejail/mutt.profile b/.config/firejail/mutt.profile
new file mode 100644
index 0000000..4a504d5
--- /dev/null
+++ b/.config/firejail/mutt.profile
@@ -0,0 +1,28 @@
+# Firejail profile for mutt
+
+# In case GnuPG is called
+noblacklist ~/.gnupg
+mkdir ~/.gnupg
+whitelist ~/.gnupg
+
+# Allow access to mailboxes
+whitelist ~/Mail
+whitelist ~/sent
+whitelist ~/postponed
+
+# Allow executing /usr/sbin/sendmail
+noblacklist /usr/sbin
+
+# Generic sandboxing
+caps.drop all
+seccomp
+protocol unix,inet,inet6
+netfilter
+tracelog
+nonewprivs
+noroot
+
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-devel.inc