github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-21 06:45:29 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 1
261 commits 10 branches 71 tags 33 MiB
Commit graph

54 commits

Author SHA1 Message Date
Andrey Alekseenko
e74750d639 Fixed Skype profile: was a copy of Steam profile 
Blacklisted ~/.Skype directory by default, since it contains copyable
account credentials.
Revoked Skype access to Steam dirs, granted access
to Skype dirs.
 2015-11-11 09:53:45 +03:00
netblue30
060697b696 added --noblacklist option 2015-11-10 08:36:52 -05:00
netblue30
863e09e7c9 added dnscrypt-proxy and unbound profiles 2015-11-10 07:56:29 -05:00
netblue30
2c50d80370 whitelist ~/.config/gtk-3.0 in firefox profile 2015-11-09 07:36:29 -05:00
netblue30
ed6733f0f6 whitelisting Загрузки (Downloads) directory in firefox and chromium profiles 2015-11-09 07:02:21 -05:00
netblue30
1a6c2585c9 allow access to ~/.gnupg in thunderbird.profile 2015-11-09 06:55:36 -05:00
netblue30
ea7fafe5d7 google chrome profile 2015-11-06 07:08:41 -05:00
netblue30
6b2a015576 Chromium profile 2015-11-04 14:28:11 -05:00
netblue30
67b5c49792 whitelisting ~/.fonts 2015-11-02 09:05:31 -05:00
Benjamin Slade
333dbff7c6 Added profile for Conkeror Browser 2015-11-01 11:15:30 -07:00
netblue30
77d23460d3 added disable-devel.inc 2015-11-01 08:15:01 -05:00
netblue30
6ae8d13002 profile work 2015-10-31 09:15:45 -04:00
netblue30
1130cba621 merged disable-history.inc into disable-common.inc 2015-10-30 09:06:28 -04:00
netblue30
2b37849dbd Protect shell startup files 2015-10-30 08:55:25 -04:00
netblue30
3db72d3753 enable --protocol by default in profiles 2015-10-28 13:52:29 -04:00
netblue30
bbd4cddcc0 profile work 2015-10-28 09:24:24 -04:00
netblue30
aac16b9d36 cleanup 2015-10-28 09:14:22 -04:00
netblue30
21aba697b8 vimperator, seccomp 2015-10-28 07:32:47 -04:00
netblue30
4faa338ca7 added skype profile, enabled seccomp in steam profile, added .gtkrc-2.0 in firefox profile 2015-10-27 13:32:32 -04:00
dewbasaur
5d978549bc Steam profile 2015-10-26 11:31:15 -04:00
netblue30
6b5dc35d70 removed shell=none from all profiles 2015-10-26 08:46:07 -04:00
netblue30
5a52191865 default Firefox whitelisting 2015-10-25 10:45:25 -04:00
netblue30
6b5ee43567 Merge pull request #89 from g4jc/master 
add a few new items to blacklist
 2015-10-24 09:07:06 -04:00
Gaming4JC
2b212d4c09
add a few new items to blacklist 2015-10-23 09:10:48 -04:00
andrew160
ec45d1f8a3 Update pidgin.profile 
Pidgin's data directory is blacklisted in disable-common.inc, so it couldn't access it.
 2015-10-23 10:58:04 +00:00
netblue30
0021c29f7f fixed join/shutdown problem, moving browsers and mail clients to a --shell=none default in profile files 2015-10-19 14:46:24 -04:00
netblue30
f4171a9141 --private-bin 2015-10-11 11:24:02 -04:00
netblue30
19fd5f41b9 added shell none in firefox profile 2015-10-10 11:16:12 -04:00
netblue30
8c5254162b fixed transmission-qt.profile 2015-10-08 08:40:58 -04:00
netblue30
539106a68c fixed transmission-qt profile 2015-10-08 08:08:25 -04:00
greigdp
7071bfdf8a Add a profile for Spotify 2015-10-07 09:47:33 +01:00
netblue30
eb72a896b9 blacklist sockets in /run 2015-09-27 13:07:45 -04:00
netblue30
9d3e1e24db disabled Wine and VirtualBox in default profiles 2015-09-24 08:25:27 -04:00
netblue30
abcc150ae3 fixes 2015-09-24 08:13:07 -04:00
netblue30
4f36b7246a security profile work 2015-09-24 08:03:57 -04:00
netblue30
5db7520b29 profile work 2015-09-22 08:49:58 -04:00
netblue30
1265803f63 Default profiles work 2015-09-16 07:33:08 -04:00
netblue30
42421564e0 cleanup and small fixes 2015-09-05 06:28:38 -04:00
netblue30
83781d0de5 testing, admin work 2015-09-01 11:45:23 -04:00
netblue30
38f13e822b Merge pull request #53 from sarneaud/noblacklist 
Noblacklist
 2015-09-01 08:27:02 -04:00
netblue30
acc124fb8a cleanup 2015-09-01 08:25:06 -04:00
sarneaud
91e11d1554 Update profiles to use the new noblacklist command. 2015-09-01 15:23:26 +10:00
netblue30
c400b75a70 using /etc/firejail/server.profile as default profile if the sandbox is started by root 2015-08-31 06:46:57 -04:00
sarneaud
7415d03df0 Rewrite globbing code to fix various minor issues 
* Plug a memory leak.
* Remove the short-circuit.  (This breaks when someone uses [] or ?
  patterns without using *.  I figure it's best to use the principle of
  least surprise and just let the system glob() implementation do what
  it does.)
* Stop sorting results.

I've also replaced a lot of disable-history.inc with a glob pattern.
Now it catches files like .sqlite_history and whatever the user runs
under rlwrap.
 2015-08-29 09:47:46 +10:00
netblue30
a0666fa722 fixed thunderbird profile to allow a browser to start 2015-08-28 07:32:41 -04:00
netblue30
746b6aa3b8 testing 2015-08-27 12:37:57 -04:00
netblue30
7f84ed7a38 support net none in profile files 2015-08-22 07:21:50 -04:00
netblue30
ea133564a7 moved bash completion files under src 2015-08-18 16:27:57 -04:00
mjudtmann
b77af9bad3 Update disable-mgmt.inc 
Jailed applications should not be able to change the configuration of firejail.
 2015-08-17 15:20:47 +02:00
netblue30
dcc9579e91 Merge pull request #17 from dewbasaur/master 
A bit more for CVE-2015-4495
 2015-08-14 07:36:00 -04:00