github-starred/firejail

Fork 0

mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00

[GH-ISSUE #3283] Viber - how to disable clipboard? #2060

New issue

Closed

opened 2026-05-05 08:43:54 -06:00 by gitea-mirror · 7 comments

gitea-mirror commented

2026-05-05 08:43:54 -06:00

Owner

Originally created by @svc88 on GitHub (Mar 18, 2020).
Original GitHub issue: https://github.com/netblue30/firejail/issues/3283

Using Viber Desktop on Ubuntu 18.04, but want to disable any clipboard activity it has access to. How do i do that?

PS: Also, It would actually be nice if i could turn this on on-demand, but i doubt i can do that without restarting the app can i?

Originally created by @svc88 on GitHub (Mar 18, 2020). Original GitHub issue: https://github.com/netblue30/firejail/issues/3283 Using Viber Desktop on Ubuntu 18.04, but want to disable any clipboard activity it has access to. How do i do that? PS: Also, It would actually be nice if i could turn this on on-demand, but i doubt i can do that without restarting the app can i?

gitea-mirror

2026-05-05 08:43:54 -06:00

closed this issue
added the
question_old
label

gitea-mirror commented

2026-05-05 08:43:57 -06:00

Author

Owner

@rusty-snake commented on GitHub (Mar 18, 2020):

https://firejail.wordpress.com/documentation-2/x11-guide/
looks like Xpra can do this at runtime.

@rusty-snake commented on GitHub (Mar 18, 2020): https://firejail.wordpress.com/documentation-2/x11-guide/ looks like Xpra can do this at runtime.

gitea-mirror commented

2026-05-05 08:43:58 -06:00

Author

Owner

@svc88 commented on GitHub (Mar 18, 2020):

@rusty-snake is there no other way to disallow clipboard by blacklisting something in its .local file?

@svc88 commented on GitHub (Mar 18, 2020): @rusty-snake is there no other way to disallow clipboard by blacklisting something in its .local file?

gitea-mirror commented

2026-05-05 08:43:59 -06:00

Author

Owner

@rusty-snake commented on GitHub (Mar 18, 2020):

Unfortunately no, the clipboard is not implemented via files, it uses the X11/Wayland socket.

@rusty-snake commented on GitHub (Mar 18, 2020): Unfortunately no, the clipboard is not implemented via files, it uses the X11/Wayland socket.

gitea-mirror commented

2026-05-05 08:44:01 -06:00

Author

Owner

@svc88 commented on GitHub (Mar 18, 2020):

Ok so say i do as in example from the documentation you sent me:
$ firejail --x11=xpra --net=eth0 program-and-arguments
or
$ firejail --x11=xephyr --net=eth0 program-and-arguments

Is --net=eth0 necessary to use? Wont it use the default network adapter if i dont specify?

@svc88 commented on GitHub (Mar 18, 2020): Ok so say i do as in example from the documentation you sent me: $ firejail --x11=xpra --net=eth0 program-and-arguments or $ firejail --x11=xephyr --net=eth0 program-and-arguments Is --net=eth0 necessary to use? Wont it use the default network adapter if i dont specify?

gitea-mirror commented

2026-05-05 08:44:02 -06:00

Author

Owner

@rusty-snake commented on GitHub (Mar 21, 2020):

It is more comfortable to run a wm like openbox in the X server (as described below). but otherwise it is true so far.

Is --net=eth0 necessary to use?

If you have an abstract X socket it would be still accessible, so a malicious program maybe could still access you clipboard (or firejail will give you an error about that).

@rusty-snake commented on GitHub (Mar 21, 2020): It is more comfortable to run a wm like openbox in the X server (as described below). but otherwise it is true so far. > Is --net=eth0 necessary to use? If you have an abstract X socket it would be still accessible, so a malicious program maybe could still access you clipboard (or firejail will give you an error about that).

gitea-mirror commented

2026-05-05 08:44:03 -06:00

Author

Owner

@rusty-snake commented on GitHub (May 6, 2020):

I'm closing here due to inactivity, please fell free to reopen if you have more questions.

@rusty-snake commented on GitHub (May 6, 2020): I'm closing here due to inactivity, please fell free to reopen if you have more questions.

gitea-mirror commented

2026-05-05 08:44:04 -06:00

Author

Owner

@milahu commented on GitHub (May 7, 2022):

want to disable any clipboard activity

https://firejail.wordpress.com/documentation-2/x11-guide/
looks like Xpra can do this at runtime.

jdownloader can escape this. it still has access to my clipboard (and creates its own tray icon)
firejail --profile=jdownloader --x11=xpra java -jar JDownloader.jar

For xephyr you will have to run both applications on the same x11 server, I have an example for --x11=xephyr here: https://firejail.wordpress.com/documentation-2/x11-guide/#listing.

X11 security extension disables the clipboard and drag&drop,

firejail --x11=xorg fails with no authorization protocol specified similar to #1741 #3627 #4105

@milahu commented on GitHub (May 7, 2022): > want to disable any clipboard activity > https://firejail.wordpress.com/documentation-2/x11-guide/ > looks like Xpra can do this at runtime. jdownloader can escape this. it still has access to my clipboard (and creates its own tray icon) `firejail --profile=jdownloader --x11=xpra java -jar JDownloader.jar` related https://github.com/netblue30/firejail/issues/875#issuecomment-257095247 > For xephyr you will have to run both applications on the same x11 server, I have an example for --x11=xephyr here: https://firejail.wordpress.com/documentation-2/x11-guide/#listing. > > X11 security extension disables the clipboard and drag&drop, `firejail --x11=xorg` fails with `no authorization protocol specified` similar to #1741 #3627 #4105

gitea-mirror referenced this issue

2026-05-05 10:14:56 -06:00

[PR #2060] [MERGED] WIP: Add new disable-xdg.inc #4163

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#2060

No description provided.

Rows
Columns