aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAge
* don't run with closed standard streamsLibravatar smitsohu2020-08-03
| | | | | | Ensure that all standard streams are open and we don't inadvertently print to files opened for a different reason; in general we can expect glibc to take care of this, but it doesn't cover the case where a sandbox is started by root. The added code also serves as a fallback. Unrelated: For what it's worth, shift umask call closer to main start, so it runs before lowering privileges and before anything can really go wrong.
* Remove unused dummy source fileLibravatar Reiner Herrmann2020-08-01
|
* fix ordering in vmware.profileLibravatar glitsj162020-07-31
|
* Added git-cola profile (#3560)Libravatar kortewegdevries2020-07-30
| | | | | | | | | | | * Added git-cola profile Initial * Edit private-etc Add alternatives,pki * Add disable-xdg
* Add vmware profile #3526Libravatar Neo000012020-07-30
|
* new profile: gnome-calendarLibravatar rusty-snake2020-07-30
|
* add profile for sushi (#3558)Libravatar rusty-snake2020-07-30
|
* Added lyx profile (#3556)Libravatar kortewegdevries2020-07-30
| | | | | | | | | * Added lyx profile Initial * Rmoved whitelists Make home directory more accessible
* Added minitube profile (#3555)Libravatar kortewegdevries2020-07-30
| | | | | | | | | * Added minitube profile Initial * Second Removed no3d,added novideo
* Added Nuclear profile (#3553)Libravatar kortewegdevries2020-07-30
| | | Initial
* Added mtpaint profile (#3550)Libravatar kortewegdevries2020-07-30
| | | | | | | | | * Added mtpaint profile Initial * Second Remove IPC-namespace,netfilter
* initial /home cleaning: fail gently if home directory is a FUSE mountLibravatar smitsohu2020-07-29
|
* Merge pull request #3521 from smitsohu/join2Libravatar smitsohu2020-07-29
|\ | | | | integrate join(-or-start) with dbus options (partial fix)
| * integrate join(-or-start) with dbus optionsLibravatar smitsohu2020-07-18
| | | | | | | | | | update D-Bus environment variables during join, so that a joining process is able to use D-Bus, too
* | fix Lua in mpv.profileLibravatar glitsj162020-07-28
| | | | | | Fixes for #3554.
* | Added minecraft-launcher profile (#3538)Libravatar kortewegdevries2020-07-27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Added minecraft-launcher-profile Initial * Changed minecraft-launcher profile Added space,tracelog,nodvd * Third Fixed private-etc,added notes about path,java * Sorting
* | fix ordering in xfce4-screenshooter.profileLibravatar glitsj162020-07-26
| |
* | Merge pull request #3547 from kortewegdevries/mtpaintLibravatar rusty-snake2020-07-26
|\ \ | | | | | | Added xfce4-screenshooter profile
| * | Added xfce4-screenshooter profileLibravatar kortewegdevries2020-07-25
| | | | | | | | | | | | Initial,removed common blaclist,add netfilter,private-etc
* | | fix #3551Libravatar rusty-snake2020-07-26
| | |
* | | Merge pull request #3548 from EmilGedda/patch-1Libravatar rusty-snake2020-07-26
|\ \ \ | | | | | | | | fix typo in multicast CIDR
| * | | fix typo in multicast CIDRLibravatar Emil Gedda2020-07-25
|/ / /
* | | Merge pull request #3502 from awelzel/ignore-sigttou-during-stdin-flushLibravatar smitsohu2020-07-25
|\ \ \ | |/ / |/| | Ignore SIGTTOU during flush_stdin()
| * | Ignore SIGTTOU during flush_stdin()Libravatar Arne Welzel2020-07-08
| | | | | | | | | | | | fixes #3500
* | | add newsflash profileLibravatar rusty-snake2020-07-25
| | |
* | | Update virtualbox.profile (#3537)Libravatar Neo000012020-07-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Update virtualbox.profile * Update virtualbox.profile * Update virtualbox.profile * Update virtualbox.profile * Update virtualbox.profile * Update virtualbox.profile
* | | Merge pull request #3543 from kortewegdevries/github-desktop-patchLibravatar rusty-snake2020-07-24
|\ \ \ | | | | | | | | Github-desktop: Add chroot to seccomp
| * | | Filter seccompLibravatar kortewegdevries2020-07-24
|/ / / | | | | | | | | | Add chroot
* | | fix ordering in freetube.profileLibravatar glitsj162020-07-23
| | |
* | | fix ordering in cawbird.profileLibravatar glitsj162020-07-23
| | |
* | | Added freetube profile (#3535)Libravatar kortewegdevries2020-07-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Added freetube profile Initial * Added freetube profile Second:drop ignore seccomp,add disable-shell See https://github.com/netblue30/firejail/pull/3535
* | | Added cawbird profile (#3533)Libravatar kortewegdevries2020-07-23
| | | | | | | | | | | | | | | | | | * Added cawbird profile See https://github.com/netblue30/firejail/pull/3533 Squash commits for merging
* | | Merge pull request #3518 from onovy/zoom-profileLibravatar rusty-snake2020-07-21
|\ \ \ | | | | | | | | Hardend Zoom profile
| * | | Hardend Zoom profileLibravatar Ondřej Nový2020-07-20
| | |/ | |/|
* | | Merge pull request #3520 from onovy/mattermost-profileLibravatar rusty-snake2020-07-21
|\ \ \ | | | | | | | | Add Mattermost desktop profile
| * | | Add Mattermost desktop profileLibravatar Ondřej Nový2020-07-20
| |/ /
* | | Update telegram.profile (#3529)Libravatar Neo000012020-07-21
| | | | | | | | | | | | | | | | | | | | | * Update telegram.profile * Update telegram.profile * Update telegram.profile
* | | New profile for homebank (#3525)Libravatar kortewegdevries2020-07-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add files via upload New profile for homebank * Update etc/profile-a-l/homebank.profile Co-authored-by: rusty-snake <41237666+rusty-snake@users.noreply.github.com> * Update etc/profile-a-l/homebank.profile Co-authored-by: rusty-snake <41237666+rusty-snake@users.noreply.github.com> * Update homebank.profile * Update firecfg.config homebank added * Update disable-programs.inc Added blacklist. * Update homebank.profile Added disable-shell,removed whitelisted docs * Update disable-programs.inc Changed sorting * Update homebank.profile Changed sorting * Added cawbird profile Initial * Revert "Added cawbird profile" This reverts commit 6b045976adf62a91882236600c55926af34b6a52. Co-authored-by: rusty-snake <41237666+rusty-snake@users.noreply.github.com>
* | | fix #3404 (#3511)Libravatar rusty-snake2020-07-20
| | | | | | | | | | | | | | | * fix #3404 * Update teams.profile
* | | Update discord-common.profileLibravatar rusty-snake2020-07-20
| | | | | | | | | | | | | | | fixes #3528 Are there any reasons why discord has no shell none?
* | | fixupsLibravatar rusty-snake2020-07-19
| | |
* | | remoce pandoc from firecfgLibravatar rusty-snake2020-07-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | I too saw some breaktages with programs using it. It can still be used like this: firejail pandoc -t foo bar.tex closes #3524
* | | Fix gnome-pomodoroLibravatar rusty-snake2020-07-19
| | |
* | | fix make distcleanLibravatar rusty-snake2020-07-19
| | |
* | | Harden gnome-calculatorLibravatar rusty-snake2020-07-19
| | |
* | | Merge pull request #3519 from onovy/signal-profileLibravatar rusty-snake2020-07-18
|\ \ \ | | | | | | | | Hardend Signal desktop profile
| * | | Hardend Signal desktop profileLibravatar Ondřej Nový2020-07-17
| |/ /
* / / fix typosLibravatar glitsj162020-07-17
|/ /
* | Merge pull request #3516 from smitsohu/busyboxLibravatar smitsohu2020-07-17
|\ \ | | | | | | fixing busybox workaround
| * | fixing busybox workaroundLibravatar smitsohu2020-07-16
| | |
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-21 01:31:19 +0000