---
contrib/filter/firejail.profile | 41 +++++++++++++++++++++++++++++++++
doc/man1/notmuch-config.rst | 7 ++++++
2 files changed, 48 insertions(+)
create mode 100644 contrib/filter/firejail.profile
diff --git a/contrib/filter/firejail.profile b/contrib/filter/firejail.profile
new file mode 100644
index 00000000..964bb3dc
--- /dev/null
+++ b/contrib/filter/firejail.profile
@@ -0,0 +1,41 @@
+# Firejail profile for notmuch attachment filter
+
+quiet
+
+# Persistent global definitions
+include globals.local
+
+include disable-common.inc
+
+apparmor
+caps.drop all
+machine-id
+net none
+no3d
+nodvd
+nogroups
+noinput
+nonewprivs
+noroot
+nosound
+notv
+nou2f
+novideo
+protocol unix
+seccomp
+seccomp.block-secondary
+tracelog
+x11 none
+
+disable-mnt
+private-cache
+private-dev
+private-etc gconf
+private-tmp
+
+dbus-user none
+dbus-system none
+
+restrict-namespaces
+
+read-only ${HOME}
diff --git a/doc/man1/notmuch-config.rst b/doc/man1/notmuch-config.rst
index 38cbe289..8d0aa11b 100644
--- a/doc/man1/notmuch-config.rst
+++ b/doc/man1/notmuch-config.rst
@@ -144,6 +144,13 @@ paths are presumed relative to `$HOME` for items in section
sandboxing mechanism, so that it cannot be subverted to attack your
system or steal your data.
+ One of the options on Linux systems is Firejail
+ https://firejail.wordpress.com/ ; a sample Firejail profile is shipped
+ with notmuch source as ``contrib/filter/firejail.profile``. You may
+ use it as ``notmuch config set index.filter 'firejail
+ --profile=<.../contrib/filter/firejail.profile>
+ <your filter program>'``.
+
The filter is a shell program (passed to ``SHELL`` or ``/bin/sh`` as
the argument of the ``-c`` option). The payload of the MIME part to
be filtered will be supplied on its `stdin`, it is expected to write
--
2.47.3
_______________________________________________
notmuch mailing list -- [email protected]
To unsubscribe send an email to [email protected]
