diff options
author | netblue30 <netblue30@yahoo.com> | 2016-03-30 09:58:57 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-03-30 09:58:57 -0400 |
commit | 295ecaa1c7caf2a23e42086fddefc1622fc8b829 (patch) | |
tree | f0e69f3e58727f082ed56c0e97aa86443171d861 /README.md | |
parent | x11 work (diff) | |
download | firejail-295ecaa1c7caf2a23e42086fddefc1622fc8b829.tar.gz firejail-295ecaa1c7caf2a23e42086fddefc1622fc8b829.tar.zst firejail-295ecaa1c7caf2a23e42086fddefc1622fc8b829.zip |
x11 work
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 63 |
1 files changed, 17 insertions, 46 deletions
@@ -129,47 +129,7 @@ FILE TRANSFER | |||
129 | 129 | ||
130 | ## Firecfg | 130 | ## Firecfg |
131 | ````` | 131 | ````` |
132 | NAME | 132 | |
133 | Firecfg - Desktop configuration program for Firejail software. | ||
134 | |||
135 | SYNOPSIS | ||
136 | firecfg [OPTIONS] | ||
137 | |||
138 | DESCRIPTION | ||
139 | Firecfg is the desktop configuration utility for Firejail software. The | ||
140 | utility creates several symbolic links to firejail executable. This | ||
141 | allows the user to sandbox applications automatically, just by clicking | ||
142 | on a regular desktop menus and icons. | ||
143 | |||
144 | The symbolic links are placed in /usr/local/bin. For more information, | ||
145 | see DESKTOP INTEGRATION section in man 1 firejail. | ||
146 | |||
147 | OPTIONS | ||
148 | --clear | ||
149 | Clear all firejail symbolic links | ||
150 | |||
151 | -?, --help | ||
152 | Print options end exit. | ||
153 | |||
154 | --list List all firejail symbolic links | ||
155 | |||
156 | --version | ||
157 | Print program version and exit. | ||
158 | |||
159 | Example: | ||
160 | |||
161 | $ sudo firecfg | ||
162 | /usr/local/bin/firefox created | ||
163 | /usr/local/bin/vlc created | ||
164 | [...] | ||
165 | $ firecfg --list | ||
166 | /usr/local/bin/firefox | ||
167 | /usr/local/bin/vlc | ||
168 | [...] | ||
169 | $ sudo firecfg --clear | ||
170 | /usr/local/bin/firefox removed | ||
171 | /usr/local/bin/vlc removed | ||
172 | [...] | ||
173 | ````` | 133 | ````` |
174 | 134 | ||
175 | 135 | ||
@@ -186,11 +146,12 @@ or at run time by editing /etc/firejail/firejail.config file. | |||
186 | 146 | ||
187 | The following features can be enabled or disabled: | 147 | The following features can be enabled or disabled: |
188 | ````` | 148 | ````` |
189 | secomp Enable or disable seccomp support, default enabled. | 149 | bind Enable or disable bind support, default enabled. |
190 | 150 | ||
191 | chroot Enable or disable chroot support, default enabled. | 151 | chroot Enable or disable chroot support, default enabled. |
192 | 152 | ||
193 | bind Enable or disable bind support, default enabled. | 153 | file-transfer |
154 | Enable or disable file transfer support, default enabled. | ||
194 | 155 | ||
195 | network | 156 | network |
196 | Enable or disable networking features, default enabled. | 157 | Enable or disable networking features, default enabled. |
@@ -202,12 +163,21 @@ The following features can be enabled or disabled: | |||
202 | --net=ethXXX only to root user. Regular users are only allowed | 163 | --net=ethXXX only to root user. Regular users are only allowed |
203 | --net=none. | 164 | --net=none. |
204 | 165 | ||
166 | secomp Enable or disable seccomp support, default enabled. | ||
167 | |||
205 | userns Enable or disable user namespace support, default enabled. | 168 | userns Enable or disable user namespace support, default enabled. |
206 | 169 | ||
207 | x11 Enable or disable X11 sandboxing support, default enabled. | 170 | x11 Enable or disable X11 sandboxing support, default enabled. |
208 | 171 | ||
209 | file-transfer | 172 | xephyr-screen |
210 | Enable or disable file transfer support, default enabled. | 173 | Screen size for --x11=xephyr, default 800x600. Run |
174 | /usr/bin/xrandr for a full list of resolutions available on your | ||
175 | specific setup. Examples: | ||
176 | |||
177 | xephyr-screen 640x480 | ||
178 | xephyr-screen 800x600 | ||
179 | xephyr-screen 1024x768 | ||
180 | xephyr-screen 1280x1024 | ||
211 | ````` | 181 | ````` |
212 | 182 | ||
213 | ## Default seccomp filter update | 183 | ## Default seccomp filter update |
@@ -272,5 +242,6 @@ $ man firejail-profile | |||
272 | ````` | 242 | ````` |
273 | 243 | ||
274 | ## New security profiles | 244 | ## New security profiles |
275 | lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril, qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars, qTox | 245 | lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril, qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars, qTox, |
246 | OpenSSH client, OpenBox window manager. | ||
276 | 247 | ||