[GH-ISSUE #4379] Replace "whitelist" and "blacklist" terms by "allowlist" and "blocklist"/"denylist"

gitea-mirror commented

2026-05-05 09:18:16 -06:00

Owner

Originally created by @ned64 on GitHub (Jun 30, 2021).
Original GitHub issue: https://github.com/netblue30/firejail/issues/4379

There has been a debate in the IT sec community for a while now about the terms "whitelist" and "blacklist", see e.g. here

dice.com article: ‘Whitelist,’ ‘Blacklist’: The New Debate Over Security Terminology

While certainly not meant by firejail or others in any racial or other negative sense there is at least a potential problem of connotation. "Black" items are to excluded/blocked, while "white" ones will be included/accepted. In a world where there are racism problems in most societies - many of which are about dark and light skin colour - this can be experienced by some as just one more implicit bias of white/black being good/bad.

I therefore suggest that --blacklist options and --whitelist options (including all derivatives) be renamed --blocklist and --allowlist (etc.) as some companies have already started doing.

Alternatively one could use derivatives of allow and deny - terms known from Apache (httpd.conf is where I first came across them decades ago).

In whatever way the change is implemented, the old options would need to be kept (but deprecated a.s.a.p.) as alternative names for existing user configurations not to break, perhaps for quite some time. In all own releases the replacement should be complete, though, including contributed profiles and documentation.

Originally created by @ned64 on GitHub (Jun 30, 2021). Original GitHub issue: https://github.com/netblue30/firejail/issues/4379 There has been a debate in the IT sec community for a while now about the terms "whitelist" and "blacklist", see e.g. here [dice.com article: ‘Whitelist,’ ‘Blacklist’: The New Debate Over Security Terminology](https://insights.dice.com/2020/07/17/whitelist-blacklist-the-new-debate-over-security-terminology/) While certainly not meant by firejail or others in any racial or other negative sense there is at least a potential problem of connotation. "Black" items are to excluded/blocked, while "white" ones will be included/accepted. In a world where there are racism problems in most societies - many of which are about dark and light skin colour - this can be experienced by some as just one more implicit bias of white/black being good/bad. I therefore suggest that `--blacklist` options and `--whitelist` options (including all derivatives) be renamed `--blocklist` and `--allowlist` (etc.) as some companies have already started doing. Alternatively one could use derivatives of `allow` and `deny` - terms known from Apache (`httpd.conf` is where I first came across them decades ago). In whatever way the change is implemented, the old options would need to be kept (but deprecated a.s.a.p.) as alternative names for existing user configurations not to break, perhaps for quite some time. In all own releases the replacement should be complete, though, including contributed profiles and documentation.

gitea-mirror added the

enhancement

label 2026-05-05 09:18:16 -06:00

gitea-mirror commented

2026-05-05 09:18:18 -06:00

Author

Owner

@ghost commented on GitHub (Jun 30, 2021):

Looks like a duplicate of https://github.com/netblue30/firejail/issues/3447.

@ghost commented on GitHub (Jun 30, 2021): Looks like a duplicate of https://github.com/netblue30/firejail/issues/3447.

gitea-mirror commented

2026-05-05 09:18:19 -06:00

Author

Owner

@ned64 commented on GitHub (Jun 30, 2021):

@glitsj16 Well spotted. I did search before posting but it didn't turn up.

@ned64 commented on GitHub (Jun 30, 2021): @glitsj16 Well spotted. I _did_ search before posting but it didn't turn up.

gitea-mirror commented

2026-05-05 09:18:21 -06:00

Author

Owner

@ghost commented on GitHub (Jun 30, 2021):

I did search before posting but it didn't turn up.

@ned64 That does happen sometimes. Especially with 'keywords' like whitelist and blacklist being all over our code base it can help to run a search through the web search engine of your choosing instead of through the GitHub search.

@ghost commented on GitHub (Jun 30, 2021): > I did search before posting but it didn't turn up. @ned64 That does happen sometimes. Especially with 'keywords' like _whitelist_ and _blacklist_ being all over our code base it can help to run a search through the web search engine of your choosing instead of through the GitHub search.

gitea-mirror commented

2026-05-05 09:18:22 -06:00

Author

Owner

@netblue30 commented on GitHub (Jul 1, 2021):

Tentative move to allow/deny under way. I put a message on the main README.md, and redirected the old #3447 issue here.

@netblue30 commented on GitHub (Jul 1, 2021): Tentative move to allow/deny under way. I put a message on the main README.md, and redirected the old #3447 issue here.

gitea-mirror commented

2026-05-05 09:18:22 -06:00

Author

Owner

@netblue30 commented on GitHub (Jul 5, 2021):

I'm done for now. Everything should be working as before. blacklist/whitelist are set as aliases, nothing should break.

In src/tools/profcleaner.c I have a small tool you can use to convert your local profiles - details in the .c file. Any suggestions in man pages just put them in git. Probably there will be several iterations until we get them right. Hold on on changes throughout the wiki until we release it.

@netblue30 commented on GitHub (Jul 5, 2021): I'm done for now. Everything should be working as before. blacklist/whitelist are set as aliases, nothing should break. In src/tools/profcleaner.c I have a small tool you can use to convert your local profiles - details in the .c file. Any suggestions in man pages just put them in git. Probably there will be several iterations until we get them right. Hold on on changes throughout the wiki until we release it.

gitea-mirror commented

2026-05-05 09:18:24 -06:00

Author

Owner

@netblue30 commented on GitHub (Jul 8, 2021):

Phase 2

"deny" seems to be working, but "allow" sucks!

I was thinking... In Firefox we have the home directory, which is not a real directory, but kind of a virtual one. So instead of "allow" let's put "virtual". How does it sound? Any other ideas?

Also, do we change file names such as whitelist-common.inc? Git blame/history might get confusing.

@netblue30 commented on GitHub (Jul 8, 2021): Phase 2 "deny" seems to be working, but "allow" sucks! I was thinking... In Firefox we have the home directory, which is not a real directory, but kind of a virtual one. So instead of "allow" let's put "virtual". How does it sound? Any other ideas? Also, do we change file names such as whitelist-common.inc? Git blame/history might get confusing.

gitea-mirror commented

2026-05-05 09:18:25 -06:00

Author

Owner

@rusty-snake commented on GitHub (Jul 8, 2021):

Any other ideas?

whitelist -> ~~allow~~ -> strict-allow

Also, do we change file names such as whitelist-common.inc? Git blame/history might get confusing.

allow-*.inc has already an other use, so we would need to rename these to nodeny-*.inc/nodisable-*.inc.

The thing that makes me worry more it that renaming can break user overrides. We can leave redirect-aliases so include whitelist-*.inc in a .local is this working and we can include the old .locals in the renamed one. But what is with ignore include whitelist-runuser-common.inc for example.

Phase 2

Other notes:

CI is still broken
a11707ea27 (r53017801) (typo)
fe0f975f44 (r53159540) (double spaces)
todo: vim syntax
Some of the --help message should be improved. Thought --help message need a rework/review in general, I mean --machine-id - preserve /etc/machine-id. --machine-id does the opposite (it creates a new /etc/machine-id).

@rusty-snake commented on GitHub (Jul 8, 2021): > Any other ideas? `whitelist` -> ~`allow`~ -> `strict-allow` > Also, do we change file names such as whitelist-common.inc? Git blame/history might get confusing. `allow-*.inc` has already an other use, so we would need to rename these to `nodeny-*.inc`/`nodisable-*.inc`. The thing that makes me worry more it that renaming can break user overrides. We can leave redirect-aliases so `include whitelist-*.inc` in a .local is this working and we can include the old .locals in the renamed one. But what is with `ignore include whitelist-runuser-common.inc` for example. > Phase 2 Other notes: - CI is still broken - https://github.com/netblue30/firejail/commit/a11707ea273e5665047f8a7d9387ba07f08d72f6#r53017801 (typo) - https://github.com/netblue30/firejail/commit/fe0f975f447d59977d90c3226cc8c623b31b20b3#r53159540 (double spaces) - todo: vim syntax - Some of the `--help` message should be improved. Thought `--help` message need a rework/review in general, I mean `--machine-id - preserve /etc/machine-id`. `--machine-id` does the opposite (it creates a new `/etc/machine-id`).

gitea-mirror commented

2026-05-05 09:18:25 -06:00

Author

Owner

@netblue30 commented on GitHub (Jul 8, 2021):

strict-allow is fine, the best so far!

Let's say we wait until Monday morning in case somebody comes with another idea, and I'll modify the code and the profiles. Then you go in for --help, vim syntax, profile template (we missed it in the first round) and whatever else.

@netblue30 commented on GitHub (Jul 8, 2021): strict-allow is fine, the best so far! Let's say we wait until Monday morning in case somebody comes with another idea, and I'll modify the code and the profiles. Then you go in for --help, vim syntax, profile template (we missed it in the first round) and whatever else.

gitea-mirror commented

2026-05-05 09:18:26 -06:00

Author

Owner

@kmk3 commented on GitHub (Jul 9, 2021):

@netblue30 commented 12 hours ago:

Phase 2

"deny" seems to be working, but "allow" sucks!

I was thinking... In Firefox we have the home directory, which is not a real
directory, but kind of a virtual one. So instead of "allow" let's put
"virtual". How does it sound? Any other ideas?

@netblue30 commented 11 hours ago:

strict-allow is fine, the best so far!

Let's say we wait until Monday morning in case somebody comes with another
idea, and I'll modify the code and the profiles. Then you go in for --help,
vim syntax, profile template (we missed it in the first round) and whatever
else.

Hello, I have a proposal for improving the syntax/semantics of the whitelist
/ allow command (as I also think that it sucks, for multiple reasons) that
I've been meaning to submit for a long time.

I haven't submitted it before because the write-up was a little convoluted and
I wasn't happy with it, but since these changes are being made, I suppose that
now is the time to fix it up and post it.

Anyway, I'll try to do so by Monday (probably on a new issue), so please don't
make any more drastic changes until then.

@kmk3 commented on GitHub (Jul 9, 2021): @netblue30 commented 12 hours ago: > Phase 2 > > "deny" seems to be working, but "allow" sucks! > > I was thinking... In Firefox we have the home directory, which is not a real > directory, but kind of a virtual one. So instead of "allow" let's put > "virtual". How does it sound? Any other ideas? @netblue30 commented 11 hours ago: > strict-allow is fine, the best so far! > > Let's say we wait until Monday morning in case somebody comes with another > idea, and I'll modify the code and the profiles. Then you go in for --help, > vim syntax, profile template (we missed it in the first round) and whatever > else. Hello, I have a proposal for improving the syntax/semantics of the `whitelist` / `allow` command (as I also think that it sucks, for multiple reasons) that I've been meaning to submit for a long time. I haven't submitted it before because the write-up was a little convoluted and I wasn't happy with it, but since these changes are being made, I suppose that now is the time to fix it up and post it. Anyway, I'll try to do so by Monday (probably on a new issue), so please don't make any more drastic changes until then.

gitea-mirror commented

2026-05-05 09:18:27 -06:00

Author

Owner

@rusty-snake commented on GitHub (Jul 9, 2021):

FWIW: There was already a discussion about improved semantic in #3447.

@rusty-snake commented on GitHub (Jul 9, 2021): FWIW: There was already a discussion about improved semantic in #3447.

gitea-mirror commented

2026-05-05 09:18:27 -06:00

Author

Owner

@netblue30 commented on GitHub (Jul 11, 2021):

Let's keep track of them:

from https://github.com/netblue30/firejail/pull/4388

Update manpages: firejail(1) and firejail-profile(5)
Update shell completions
Update vim syntax files

@netblue30 commented on GitHub (Jul 11, 2021): Let's keep track of them: from https://github.com/netblue30/firejail/pull/4388 - [ ] Update manpages: firejail(1) and firejail-profile(5) - [ ] Update shell completions - [ ] Update vim syntax files

gitea-mirror commented

2026-05-05 09:18:28 -06:00

Author

Owner

@kmk3 commented on GitHub (Jul 13, 2021):

Sorry for not delivering on time. The problems and solutions themselves are
basically defined, but overall the text needs more polish and more connections
between the paragraphs. Also, the current iteration of fixes/suggestions only
came to mind after most of it was written, so I need to refactor some parts.

Here's the current status:

It's about 300~500 lines long (not a wall of text though, it has many
sections and lists)
Essentially written from scratch (since my previous comment)
There are some quotes/examples taken from #3447
Identifies 3 problems with whitelist (and at least one I did not find
mentioned on #3447)
The suggestions have key advantages over the proposed allow / deny usage
(and over some others from #3447)

So please bear with me for a few more days (I'm aiming for Friday).

@kmk3 commented on GitHub (Jul 13, 2021): Sorry for not delivering on time. The problems and solutions themselves are basically defined, but overall the text needs more polish and more connections between the paragraphs. Also, the current iteration of fixes/suggestions only came to mind after most of it was written, so I need to refactor some parts. Here's the current status: * It's about 300~500 lines long (not a wall of text though, it has many sections and lists) * Essentially written from scratch (since my previous comment) * There are some quotes/examples taken from #3447 * Identifies 3 problems with `whitelist` (and at least one I did not find mentioned on #3447) * The suggestions have key advantages over the proposed `allow` / `deny` usage (and over some others from #3447) So please bear with me for a few more days (I'm aiming for Friday).

gitea-mirror commented

2026-05-05 09:18:28 -06:00

Author

Owner

@kmk3 commented on GitHub (Jul 13, 2021):

(Offtopic)

There are some quotes/examples taken from Replace whitelist and
blacklist commands with better terms
#3447

If you also think that this automatic expansion from #issue_number to
[icon issue_title #issue_number](issue url) is a bad idea, please vote on
https://github.com/github/feedback/discussions/4321.

@kmk3 commented on GitHub (Jul 13, 2021): (Offtopic) > * There are some quotes/examples taken from [Replace `whitelist` and > `blacklist` commands with better terms > #3447](https://github.com/netblue30/firejail/issues/3447) If you also think that this automatic expansion from `#issue_number` to `[icon issue_title #issue_number](issue url)` is a bad idea, please vote on <https://github.com/github/feedback/discussions/4321>.

gitea-mirror commented

2026-05-05 09:18:29 -06:00

Author

Owner

@netblue30 commented on GitHub (Jul 13, 2021):

Thanks @kmk3, absolutely no rush! Let's wait until August 1st, and if necessary we move it again.

@netblue30 commented on GitHub (Jul 13, 2021): Thanks @kmk3, absolutely no rush! Let's wait until August 1st, and if necessary we move it again.

gitea-mirror commented

2026-05-05 09:18:29 -06:00

Author

Owner

@kmk3 commented on GitHub (Jul 16, 2021):

I have made great and steady progress on the text; this is the current status:

About 800-900 lines long (I think it's mostly more background and quotes;
there are some loose/no longer relevant parts to be removed)
There are 4-6 extra quotes from #3447 for more background
6/7 sections that come before the solution appear to be finished
The solution itself still looks the same, but I need to more explicitly
mention some advantages
Besides the problems, there is 1 new possible enhancement to keep in mind for
the mid- or long-term

Additionally, today, after copying the quotes and thinking a long time about
some other aspects, it came to mind that noblacklist could be (unless I'm
missing something) rendered completely obsolete by a new (i.e.: not an alias)
command. Now I finally understand why some (seemingly complex/unintuitive)
suggestions were made on #3447. I'm glad to have written down 5
different scenarios since the beginning, as this helps test against what the
result would look like.

The 2 main problems remain solved either way, but this curve ball means that
the solution will have to be adapted for the full set of existing and new
commands to make sense.

So, to avoid further delaying what I think is the most urgent step, I have
started to work on a PR to fix a related issue, which already was the first
action item of my proposal anyway.

(Offtopic)

@kmk3 commented 3 days ago:

(Offtopic)

There are some quotes/examples taken from Replace whitelist and
blacklist commands with better terms
#3447

If you also think that this automatic expansion from #issue_number to
[icon issue_title #issue_number](issue url) is a bad idea, please vote on
github/feedback#4321.

By the way, I have found a workaround for this: manually linking the issues:

Issue [#3447][3447].

[3447]: https://github.com/netblue30/firejail/issues/3447

So funnily enough, the new troublesome non-standard markdown extension has led
me to write markdown in a more standard way (i.e.: avoiding both the old and
the new automatic expansions).

@kmk3 commented on GitHub (Jul 16, 2021): I have made great and steady progress on the text; this is the current status: * About 800-900 lines long (I think it's mostly more background and quotes; there are some loose/no longer relevant parts to be removed) * There are 4-6 extra quotes from [#3447][3447] for more background * 6/7 sections that come before the solution appear to be finished * The solution itself still looks the same, but I need to more explicitly mention some advantages * Besides the problems, there is 1 new possible enhancement to keep in mind for the mid- or long-term Additionally, today, after copying the quotes and thinking a long time about some other aspects, it came to mind that `noblacklist` could be (unless I'm missing something) rendered completely obsolete by a new (i.e.: not an alias) command. Now I finally understand why some (seemingly complex/unintuitive) suggestions were made on [#3447][3447]. I'm glad to have written down 5 different scenarios since the beginning, as this helps test against what the result would look like. The 2 main problems remain solved either way, but this curve ball means that the solution will have to be adapted for the full set of existing and new commands to make sense. So, to avoid further delaying what I think is the most urgent step, I have started to work on a PR to fix a related issue, which already was the first action item of my proposal anyway. --- (Offtopic) @kmk3 commented [3 days ago](https://github.com/netblue30/firejail/issues/4379#issuecomment-878847304): > (Offtopic) > > > * There are some quotes/examples taken from [Replace `whitelist` and > > `blacklist` commands with better terms > > #3447](https://github.com/netblue30/firejail/issues/3447) > > If you also think that this automatic expansion from `#issue_number` to > `[icon issue_title #issue_number](issue url)` is a bad idea, please vote on > [github/feedback#4321](https://github.com/github/feedback/discussions/4321). By the way, I have found a workaround for this: manually linking the issues: ```markdown Issue [#3447][3447]. [3447]: https://github.com/netblue30/firejail/issues/3447 ``` So funnily enough, the new troublesome non-standard markdown extension has led me to write markdown in a _more_ standard way (i.e.: avoiding both the old and the new automatic expansions). [3447]: https://github.com/netblue30/firejail/issues/3447

gitea-mirror commented

2026-05-05 09:18:29 -06:00

Author

Owner

@kmk3 commented on GitHub (Jul 23, 2021):

So yesterday I remembered that private-etc and similar commands also suffer
from the same main issue of whitelist, so the Problem 1 section was extended.
Besides that, today I noticed 2 more problems specific to these private-
commands. Thinking about aliases gave me an idea to solve all of this with two
commands instead of over a dozen. These are similar to the other proposed
commands and I think that both sets together would greatly help simplify
whitelisting overall.

Status:

About 900-1000 lines long
1 quote added to Problem 1 / Done
Problem 1 extended and split into 1.1 (whitelist) and 1.2 (private-etc et
al) / Done
2 new problems (regarding private-etc et al) / Done
1 new solution (to the above problems) / Mostly done

A few days were spent on #4410 and the rest is basically the same. There are
some adjacent topics (mostly related to previous suggestions and future
changes) that take a lot of space and need organizing that I might just rip out
and only post if they come up.

@kmk3 commented 11 days ago:

Identifies 3 problems with whitelist (and at least one I did not find
mentioned on Replace whitelist and blacklist commands with better terms
#3447)

I was mistaken about this; while I did not find it explicitly described, there
is at least one suggestion in there that takes Problem 1 into consideration.

@kmk3 commented on GitHub (Jul 23, 2021): So yesterday I remembered that `private-etc` and similar commands also suffer from the same main issue of `whitelist`, so the Problem 1 section was extended. Besides that, today I noticed 2 more problems specific to these `private-` commands. Thinking about aliases gave me an idea to solve all of this with two commands instead of over a dozen. These are similar to the other proposed commands and I think that both sets together would greatly help simplify whitelisting overall. Status: * About 900-1000 lines long * 1 quote added to Problem 1 / Done * Problem 1 extended and split into 1.1 (`whitelist`) and 1.2 (`private-etc` et al) / Done * 2 new problems (regarding `private-etc` et al) / Done * 1 new solution (to the above problems) / Mostly done A few days were spent on #4410 and the rest is basically the same. There are some adjacent topics (mostly related to previous suggestions and future changes) that take a lot of space and need organizing that I might just rip out and only post if they come up. --- @kmk3 commented [11 days ago](https://github.com/netblue30/firejail/issues/4379#issuecomment-878840569): > Identifies 3 problems with whitelist (and at least one I did not find > mentioned on Replace whitelist and blacklist commands with better terms > #3447) I was mistaken about this; while I did not find it explicitly described, there is at least one suggestion in there that takes Problem 1 into consideration.

gitea-mirror commented

2026-05-05 09:18:30 -06:00

Author

Owner

@kmk3 commented on GitHub (Aug 2, 2021):

Problem 1 extended and split into 1.1 (whitelist) and 1.2 (private-etc
et al) / Done

2 new problems (regarding private-etc et al) / Done

The solution section had many disjoint paragraphs and after trying to also
solve the above, I decided to rethink the commands and redo it Problem by
Problem, step by step. Though not quite done yet, it now makes much more sense
and I think I'll leave out most of what was there.

I have spent a large portion of the time trying out the new commands on
different kinds of (the existing) profiles (e.g.: allow-*.inc,
whitelist-*.inc and normal profiles), to see if they could work and what they
would look like.

This helped a lot to notice redundancies/inconsistencies, so the
private--related commands are different now. This is probably the biggest
change; these commands make more sense now and I think they will be posted as
is.

Some questions came up regarding how whitelisting-related commands, running
multiple commands at the same time and profile organization would work, as the
order of noblacklist and whitelist commands may give different results (not
sure). But since the initial problems are still the same and since this would
also affect prior suggestions from #3447, I'll either just leave this
discussion for the thread or open one separately.

Problem 1 extended and split into 1.1 (whitelist) and 1.2 (private-etc et
al) / Done

2 new problems (regarding private-etc et al) / Done

While the former is still true, the latter was not quite correct and requires
some changes. I had misunterstood the relationship between whitelist and
private- (on keeping vs discarding changes). I think other people might also
be confused by this, so I'll open a discussion later to document this.

On the upside, there are fewer commands proposed now, as many of them were due
to the above, so things are simpler again.

Summary of the changes that I remember:

Problem 1.2: Added reference to ed1f0c088
Problem 2: Added scenario 6 (noblacklist + nowhitelist)
Aliases: Added reference to #4410
Solution: Redone (+new private-related commands were changed)

Also, there are some discussions that I intend to open separately:

Differences between whitelist and private-
Differences between noblacklist and ignore blacklist
Add -o option
profile.template: dotfiles and misc sorting (mentioned on #4410)

I'd like to open some of them beforehand (even if no answers are posted), to be
able to reference them in the post and if they come up in the comments.

I know it's already past the mentioned August 1st date, but there is still work
to be done. To be safe, I'm aiming for September 1st. If this would block any
ongoing development too much, please let me know.

@kmk3 commented on GitHub (Aug 2, 2021): > * Problem 1 extended and split into 1.1 (`whitelist`) and 1.2 (`private-etc` > et al) / Done > * 2 new problems (regarding `private-etc` et al) / Done The solution section had many disjoint paragraphs and after trying to also solve the above, I decided to rethink the commands and redo it Problem by Problem, step by step. Though not quite done yet, it now makes much more sense and I think I'll leave out most of what was there. I have spent a large portion of the time trying out the new commands on different kinds of (the existing) profiles (e.g.: allow-\*.inc, whitelist-\*.inc and normal profiles), to see if they could work and what they would look like. This helped a lot to notice redundancies/inconsistencies, so the `private-`-related commands are different now. This is probably the biggest change; these commands make more sense now and I think they will be posted as is. Some questions came up regarding how whitelisting-related commands, running multiple commands at the same time and profile organization would work, as the order of `noblacklist` and `whitelist` commands may give different results (not sure). But since the initial problems are still the same and since this would also affect prior suggestions from [#3447][3447], I'll either just leave this discussion for the thread or open one separately. > Problem 1 extended and split into 1.1 (whitelist) and 1.2 (private-etc et al) / Done > * 2 new problems (regarding private-etc et al) / Done While the former is still true, the latter was not quite correct and requires some changes. I had misunterstood the relationship between `whitelist` and `private-` (on keeping vs discarding changes). I think other people might also be confused by this, so I'll open a discussion later to document this. On the upside, there are fewer commands proposed now, as many of them were due to the above, so things are simpler again. Summary of the changes that I remember: * Problem 1.2: Added reference to ed1f0c088 * Problem 2: Added scenario 6 (`noblacklist` + `nowhitelist`) * Aliases: Added reference to [#4410][4410] * Solution: Redone (+new `private-`related commands were changed) Also, there are some discussions that I intend to open separately: * Differences between `whitelist` and `private-` * Differences between `noblacklist` and `ignore blacklist` * Add -o option * profile.template: dotfiles and misc sorting (mentioned on [#4410][4410]) I'd like to open some of them beforehand (even if no answers are posted), to be able to reference them in the post and if they come up in the comments. I know it's already past the mentioned August 1st date, but there is still work to be done. To be safe, I'm aiming for September 1st. If this would block any ongoing development too much, please let me know. [3447]: https://github.com/netblue30/firejail/pull/3447 [4410]: https://github.com/netblue30/firejail/pull/4410

gitea-mirror commented

2026-05-05 09:18:30 -06:00

Author

Owner

@samuelfmlourenco commented on GitHub (Feb 18, 2022):

We shouldn't bend over just because terms that always were acceptable now have a "connotation". It is unproductive and only leads to confusion in the best case, and to a broken system at the worst.

@samuelfmlourenco commented on GitHub (Feb 18, 2022): We shouldn't bend over just because terms that always were acceptable now have a "connotation". It is unproductive and only leads to confusion in the best case, and to a broken system at the worst.

Rows
Columns

[GH-ISSUE #4379] Replace "whitelist" and "blacklist" terms by "allowlist" and "blocklist"/"denylist" #2642