github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-16 06:06:03 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6
4267 commits 10 branches 71 tags 33 MiB
Commit graph

28 commits

Author SHA1 Message Date
glitsj16
6ee5afa31b don't include globals.local twice (take two) (#2010) 
* avoid including globals.local twice

* avoid including globals.local twice

* avoid including globals.local twice

* avoid including globals.local twice

* avoid including globals.local twice

* avoid including globals.local twice

* avoid including globals.local twice

* avoid including globals.local twice

* avoid including globals.local twice
 2018-06-24 16:20:32 +00:00
smitsohu
7a37dc31ab recalibrate dbus access, deploy nodbus option 
see #1822 and #1825. also systematically replaces
'blacklist /run/user/*/bus' with 'nodbus'.

with contributions from @Fred-Barclay
 2018-03-28 03:23:59 +02:00
smitsohu
55938d07a5 disable non-abstract session bus address 
systematically blacklist /run/user/*/bus in all profiles with
'net none'. targets distros like Fedora
 2017-10-22 11:34:51 +02:00
netblue30
f25fa5cbc2 added private-lib to eog, eom, file, gpicview, less, strings, and tar 2017-10-16 08:58:30 -04:00
netblue30
5bd8046908 make deb; fixed strings profile 2017-08-23 07:15:02 -04:00
Fred Barclay
ea8312bf0a Merge pull request #1466 from SpotComms/fixnd 
Fix nodvd placement
 2017-08-13 15:07:29 -05:00
Tad
104dde49c0 Fix nodvd placement 2017-08-13 15:53:04 -04:00
Tad
8d0bde2b85 Harden 17 profiles using private-bin 2017-08-13 15:32:14 -04:00
netblue30
647b6a220e added nodvd to most profiles 2017-08-13 07:36:06 -04:00
Tad
71f838b5ba Fix notv placement 2017-08-11 21:03:13 -04:00
netblue30
b97ca53e7b added notv to most profiles 2017-08-11 10:21:18 -04:00
Tad
9e3ba319be Unify all profiles 2017-08-07 01:22:08 -04:00
Tad
b18f42ab02 Initial adding of memory-deny-write-execute to profiles 
- mdwe breaks most vm-based languages so python/java/javascript and some mono programs are not compatible
- mdwe also breaks most 3d accelerated programs such as 3d games
- mdwe is similar to PaX's mprotect meaning PaX flag managers can be used as reference
-- See https://github.com/copperhead/paxd-archive/blob/master/paxd.conf
-- See https://github.com/nning/linux-pax-flags
 2017-08-02 00:13:42 -04:00
Tad
5354f20012 Harden 50 profiles 
Hardened many profiles using disable-mnt and novideo
Fixed gnome-font-viewer
 2017-07-04 11:35:29 -04:00
netblue30
b53d02259e fix quiet in profiles 2017-06-08 15:00:27 -04:00
netblue30
dce9b9b9eb added /etc/firejail/globals.local for global customizations 2017-05-23 12:02:22 -04:00
netblue30
975c6f327f persistent support for all profile files 2017-02-09 10:53:33 -05:00
valoq
29ab333108
hardened various profiles 2016-12-21 10:29:14 +01:00
netblue30
5dd8b1f19e quiet fix 2016-11-29 11:23:33 -05:00
Fred-Barclay
88972056f4 squash attempt 2 2016-10-24 15:33:54 -05:00
netblue30
ae4e4fa1e0 removed private-tmp from sysutils 2016-10-03 16:34:46 -04:00
netblue30
277a06d1f2 added back strings profile 2016-08-25 09:22:58 -04:00
netblue30
28ae6fa41b removed strings profile 2016-08-11 07:43:17 -04:00
netblue30
19a9166bd3 added quiet profile command 2016-08-01 09:55:12 -04:00
netblue30
442655366f nosound 2016-07-08 09:00:27 -04:00
netblue30
4ece607b8f sysutils 2016-06-28 07:58:20 -04:00
netblue30
fdaab24ae0 cpio, gzip, strings, xzdec 2016-06-27 09:03:06 -04:00
netblue30
e34051c203 strings, cpio, gzip, xz profiles 2016-06-26 21:40:19 -04:00
Renamed from strings.profile (Browse further)