diff options
author | netblue30 <netblue30@yahoo.com> | 2019-01-27 09:52:44 -0500 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2019-01-27 09:52:44 -0500 |
commit | 7b94018634fc364cd0b099ec9b925eb4b3230b90 (patch) | |
tree | 33232175bd73c55bf3c8785e222db32806d8ac27 /README.md | |
parent | Merge branch 'master' of http://github.com/netblue30/firejail (diff) | |
download | firejail-7b94018634fc364cd0b099ec9b925eb4b3230b90.tar.gz firejail-7b94018634fc364cd0b099ec9b925eb4b3230b90.tar.zst firejail-7b94018634fc364cd0b099ec9b925eb4b3230b90.zip |
moving to 0.9.59
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 57 |
1 files changed, 1 insertions, 56 deletions
@@ -99,61 +99,6 @@ We also keep a list of profile fixes for previous released versions in [etc-fixe | |||
99 | ````` | 99 | ````` |
100 | 100 | ||
101 | ````` | 101 | ````` |
102 | ## Current development version: 0.9.57 | 102 | ## Current development version: 0.9.59 |
103 | |||
104 | ## New Long Term Support (0.9.56-LTS) version released | ||
105 | |||
106 | The new version updates the code base to 0.9.56. We target a reduction of approx. 40% of the code by removing rarely | ||
107 | used features (chroot, overlay, rlimits, cgroups), incomplete features (private-bin, private-lib), | ||
108 | and a lot of instrumentation (build profile feature, tracing, auditing, etc). Sandbox-specific security features such as | ||
109 | seccomp, capabilities, filesystem whitelist/blacklist and networking are updated and hardened. | ||
110 | |||
111 | ````` | ||
112 | firejail (0.9.56-LTS) baseline; urgency=low | ||
113 | * code based on Firejail version 0.9.56 | ||
114 | * much smaller code base for SUID executable | ||
115 | * command line options removed: | ||
116 | --audit, --build, --cgroup, --chroot, --get, --ls, --output, | ||
117 | --output-stderr, --overlay, --overlay-named, --overlay-tmpfs, | ||
118 | --overlay-clean, --private-home, --private-bin, --private-etc, | ||
119 | --private-opt, --private-srv, --put, --rlimit*, --trace, --tracelog, | ||
120 | --x11*, --xephyr* | ||
121 | * compile-time options: --enable-apparmor, --disable-seccomp, | ||
122 | --disable-globalcfg, --disable-network, --disable-userns, | ||
123 | --disable-whitelist, --disable-suid, --enable-fatal-warnings, | ||
124 | --enable-busybox-workaround | ||
125 | -- netblue30 <netblue30@yahoo.com> Sun, 21 Oct 2018 08:00:00 -0500 | ||
126 | ````` | ||
127 | |||
128 | The new LTS branch is here: https://github.com/netblue30/firejail/tree/LTSbase | ||
129 | |||
130 | ## New commands: | ||
131 | ````` | ||
132 | --net.print=name|pid | ||
133 | If a new network namespace is enabled, print network interface | ||
134 | configuration for the sandbox specified by name or PID. Exam‐ | ||
135 | ple: | ||
136 | |||
137 | $ firejail --net.print=browser | ||
138 | Switching to pid 1853, the first child process inside the | ||
139 | sandbox | ||
140 | Interface MAC IP Mask Status | ||
141 | lo 127.0.0.1 255.0.0.0 UP | ||
142 | eth0-1852 5e:fb:8e:27:29:26 192.168.1.186 255.255.255.0 UP | ||
143 | ````` | ||
144 | 103 | ||
145 | ## New profiles: | 104 | ## New profiles: |
146 | |||
147 | ````` | ||
148 | $ ls etc/*.profile | wc -l | ||
149 | 608 | ||
150 | ````` | ||
151 | We have more than 600 application profiles on mainline! | ||
152 | |||
153 | |||
154 | QMediathekView, aria2c, Authenticator, checkbashisms, devilspie, devilspie2, easystroke, github-desktop, min, | ||
155 | bsdcat, bsdcpio, bsdtar, lzmadec, lbunzip2, lbzcat, lbzip2, lzcat, lzcmp, lzdiff, lzegrep, lzfgrep, lzgrep, | ||
156 | lzless, lzma, lzmainfo, lzmore, unlzma, unxz, xzcat, xzcmp, xzdiff, xzegrep, xzfgrep, xzgrep, xzless, xzmore, | ||
157 | lzip, artha, nitroshare, nitroshare-cli, nitroshare-nmh, nirtoshare-send, nitroshare-ui, mencoder, gnome-pie, | ||
158 | masterpdfeditor, QOwnNotes, aisleriot, Mendeley, feedreader, ocenaudio, mpsyt, | ||
159 | thunderbird-wayland, supertuxkart, ghostwriter, gajim-history-manager | ||