Fred-Barclay
eb4b505ac2
Consistent home directory nomenclature
2017-11-17 12:32:32 -06:00
Tad
71f838b5ba
Fix notv placement
2017-08-11 21:03:13 -04:00
netblue30
b97ca53e7b
added notv to most profiles
2017-08-11 10:21:18 -04:00
Tad
9e3ba319be
Unify all profiles
2017-08-07 01:22:08 -04:00
Tad
b18f42ab02
Initial adding of memory-deny-write-execute to profiles
...
- mdwe breaks most vm-based languages so python/java/javascript and some mono programs are not compatible
- mdwe also breaks most 3d accelerated programs such as 3d games
- mdwe is similar to PaX's mprotect meaning PaX flag managers can be used as reference
-- See https://github.com/copperhead/paxd-archive/blob/master/paxd.conf
-- See https://github.com/nning/linux-pax-flags
2017-08-02 00:13:42 -04:00
Tad
0dba38435e
Harden profiles
...
- Added 'disable-devel.conf' to many profiles
- Added 'disable-mnt' to many profiles
- Added 'noexec' to many profiles
- Removed 'netfilter' and 'net none' from profiles with 'protocol unix'
- Cleaned up profiles using defaults
2017-08-02 00:13:42 -04:00
Fred Barclay
05fbfe6389
test: add novideo to profiles (part 1)
2017-06-15 12:02:43 -05:00
netblue30
2fcac103e5
commented out ipc-namespace in most profiles - it breaks newer versions of GDK with the following error: Gdk-ERROR **: The program 'thunderbird' received an X Window System error
2017-05-25 07:27:26 -04:00
netblue30
dce9b9b9eb
added /etc/firejail/globals.local for global customizations
2017-05-23 12:02:22 -04:00
Tad
0502ac9cb5
Harden some more profiles
2017-04-17 21:43:06 -04:00
netblue30
975c6f327f
persistent support for all profile files
2017-02-09 10:53:33 -05:00
valoq
fa10ab0e09
many new profiles
2016-11-19 21:57:42 +01:00
