[PR #1764] [MERGED] Add seccomp filters for remmina, from an strace session connecting via RDP #4064

New issue

Closed

opened 2026-05-05 10:13:05 -06:00 by gitea-mirror · 0 comments

gitea-mirror commented

2026-05-05 10:13:05 -06:00

Owner

📋 Pull Request Information

Original PR: https://github.com/netblue30/firejail/pull/1764
Author: @jelford
Created: 2/7/2018
Status: ✅ Merged
Merged: 2/11/2018
Merged by: @smitsohu

Base: master ← Head: remmina_seccomp

📝 Commits (2)

4fbb293 Add seccomp filters for remmina, from an strace session connecting via RDP
058942d keep remmina seccomp whitelist opt-in

📊 Changes

1 file changed (+1 additions, -0 deletions)

View changed files

📝 etc/remmina.profile (+1 -0)

📄 Description

To derive the filters I ran: strace -qcf remmina then connected to a remote host via RDP.

The previous filter (just the default list) allowed Remmina to start, but would fail to establish the connection (it got as far as validating credentials; bad creds gave a different error).

The specific problematic sys call when I checked the audit log was access - but I didn't try incrementally building up from there, I just took the whole strace output.

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/netblue30/firejail/pull/1764 **Author:** [@jelford](https://github.com/jelford) **Created:** 2/7/2018 **Status:** ✅ Merged **Merged:** 2/11/2018 **Merged by:** [@smitsohu](https://github.com/smitsohu) **Base:** `master` ← **Head:** `remmina_seccomp` --- ### 📝 Commits (2) - [`4fbb293`](https://github.com/netblue30/firejail/commit/4fbb2936ebf02760c8475f392da2ba29c35ae22a) Add seccomp filters for remmina, from an strace session connecting via RDP - [`058942d`](https://github.com/netblue30/firejail/commit/058942d16d58eab08aac8ad1b5ce2e1c82ed27c8) keep remmina seccomp whitelist opt-in ### 📊 Changes **1 file changed** (+1 additions, -0 deletions) <details> <summary>View changed files</summary> 📝 `etc/remmina.profile` (+1 -0) </details> ### 📄 Description To derive the filters I ran: `strace -qcf remmina` then connected to a remote host via RDP. The previous filter (just the default list) allowed Remmina to start, but would fail to establish the connection (it got as far as validating credentials; bad creds gave a different error). The specific problematic sys call when I checked the audit log was `access` - but I didn't try incrementally building up from there, I just took the whole strace output. --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>

gitea-mirror

2026-05-05 10:13:05 -06:00

closed this issue
added the
pull-request
label

gitea-mirror referenced this issue

2026-05-05 10:30:44 -06:00

[PR #4064] [MERGED] newsboat/newsbeuter corrections #5016

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#4064

No description provided.

Rows
Columns