aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAge
* various fixes and improvementsLibravatar rusty-snake2019-08-22
| | | | | | | | | | | | - install contrib/syscalls.sh - add GitLab-CI status to README.md - read-only ${HOME}/.cargo/env - move blacklist ${HOME}/.cargo/registry, ${HOME}/.cargo/config to disable-programs - typo in man firejail firejail-profiles firecfg - better descriptions in man firejail-profiles - fixes in man firejail - template descriptions in firejail-profiles
* Enable private-bin in transmission-daemonLibravatar glitsj162019-08-21
|
* Enable private-bin in transmission-cliLibravatar glitsj162019-08-21
|
* Fix private-etc order in i2prouterLibravatar glitsj162019-08-21
|
* Fix teamspeak3Libravatar glitsj162019-08-21
| | | Fixes #2901.
* Merge pull request #2919 from corecontingency/masterLibravatar rusty-snake2019-08-21
|\ | | | | Profiles: add I2P
| * added i2prouter to firecfgLibravatar core_contingency2019-08-21
| |
| * Applied further suggestions from code reviewLibravatar core_contingency2019-08-21
| |
| * Apply suggestions from code review Libravatar corecontingency2019-08-21
| | | | | | | | | | Changed to default seccomp Co-Authored-By: rusty-snake <print_hello_world+GitHub@protonmail.com>
| * profiles: add i2pLibravatar core_contingency2019-08-21
| |
* | Drop fonts from private-etc in transmission-remote-cliLibravatar glitsj162019-08-21
|/ | | Thanks @rusty-snake for catching this!
* Refactor transmission profiles (#2920)Libravatar glitsj162019-08-21
| | | | | | | | | | | | | | | | | | | | | | | | * Refactor transmission-cli * Create transmission-common.profile * Refactor transmission-create * Refactor transmission-daemon * Refactor transmission-edit * Refactor transmission-gtk * Refactor transmission-qt * Refactor transmission-remote-cli * Refactor transmission-remote-gtk * Refactor transmission-remote * Refactor transmission-show
* Fix revert of previous trace fix. The issue was that programs were crashing ↵Libravatar Glenn Washburn2019-08-21
| | | | because libtrace hooked libc calls were being executed before the libtrace library was initialized. This was due to other loaded libraries being initialized first.
* fix #2912 and update CONTRIBUTING.mdLibravatar rusty-snake2019-08-19
|
* fix private-bin for tb-starter-wrapper #2863Libravatar rusty-snake2019-08-19
|
* noblacklist but no blacklist (#2886)Libravatar rusty-snake2019-08-19
| | | | | | | | | | | | | | | | * beginn fixup * continue * continue * continue * continue * continue * continue
* readmeLibravatar netblue302019-08-18
|
* Merge pull request #2909 from gm10/fix-get_userLibravatar netblue302019-08-18
|\ | | | | get_user() do not use the unreliable getlogin()
| * get_user() do not use the unreliable getlogin()Libravatar gm102019-08-13
| |
* | Merge pull request #2915 from corecontingency/masterLibravatar netblue302019-08-18
|\ \ | | | | | | tighten private-bin and etc for torbrowser-launcher.profile
| * | tighten private-bin and etc for torbrowser-launcher.profileLibravatar core_contingency2019-08-17
| | |
* | | profiles: add kiwix-desktopLibravatar Tad2019-08-18
| | |
* | | fix --traceLibravatar netblue302019-08-17
|/ /
* | private-dev testingLibravatar netblue302019-08-17
| |
* | Prevent quiet option output leakage (#2913)Libravatar glitsj162019-08-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * nano: add quiet option * ffmpegthumbnailer: fix quiet leakage * ffplay: fix quiet leakage * ffprobe: fix quiet leakage * rnano: fix quiet leakage * qt-faststart: fix quiet leakage * scp: fix quiet leakage * sftp: fix quiet leakage * transmission-create: fix quiet leakage * transmission-edit: fix quiet leakage * transmission-remote-cli: fix quiet leakage * transmission-remote-gtk: fix quiet leakage * dnscrypt-proxy: add quiet option * dnsmasq: add quiet option * seahorse-daemon: add quiet option * xpra: add quiet option * Xephyr: add quiet option * Xvfb: add quiet option
* | Fix regular profile header for conplayLibravatar glitsj162019-08-14
| |
* | Merge pull request #2911 from adrelanos/patch-1Libravatar Vincent432019-08-14
|\ \ | | | | | | remove x11 xorg
| * | remove x11 xorgLibravatar Patrick Schleizer2019-08-14
|/ / | | | | https://forums.whonix.org/t/automatically-firejailing-tor-browser/4767/29
* | Fix quiet option in archiver redirect profiles (#2907)Libravatar glitsj162019-08-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Fix potential leakage of quiet option in 7za * Fix potential leakage in quiet option for 7zr * Fix potential leakage in quiet option for p7zip * Fix potential leakage in quiet option for acat * Fix potential leakage in quiet option for adiff * Fix potential leakage in quiet option for als * Fix potential leakage in quiet option for apack * Fix potential leakage in quiet option for arepack * Fix potential leakage in quiet option for aunpack * Fix potential leakage in quiet option for lrunzip * Fix potential leakage in quiet option for lrz * Fix potential leakage in quiet option for lrzcat * Fix potential leakage in quiet option for lrzip * Fix potential leakage in quiet option for lrztar * Fix potential leakage in quiet option for lrzuntar * Fix potential leakage in quiet option for zpaq
* | whois: streamline quiet optionLibravatar glitsj162019-08-13
| |
* | dig: streamline quiet optionLibravatar glitsj162019-08-13
|/
* virtualbox: sort capabilitiesLibravatar glitsj162019-08-13
|
* virtualbox: add required capabilitiesLibravatar Vincent432019-08-13
| | | | | VirtualBox has several setuid binaries which need cap_sys_admin, cap_net_raw and cap_sys_nice to work properly. Fixes https://github.com/netblue30/firejail/issues/2868
* Harden 7z.profileLibravatar glitsj162019-08-13
|
* Fix order of nodvd in bsdtar.profileLibravatar glitsj162019-08-12
|
* Place quiet option cfr. all other profiles (#2904)Libravatar glitsj162019-08-12
|
* Add unzstd profile (#2903)Libravatar glitsj162019-08-12
| | | | | | * Create unzstd.profile * Add unzstd to firecfg.config
* Add zstd (redirect) profile(s) (#2902)Libravatar glitsj162019-08-12
| | | | | | | | | | | | | | | | * Create zstd.profile * Create pzstd.profile * Create zstdcat.profile * Create zstdgrep.profile * Create zstdless.profile * Create zstdmt.profile * Add zstd and its redirect profiles to firecfg.config
* add bzcat profileLibravatar smitsohu2019-08-12
|
* fix file.profile (broken on Debian Buster)Libravatar smitsohu2019-08-12
|
* Merge pull request #2900 from fandaa/patch-1Libravatar Vincent432019-08-11
|\ | | | | Fix QOwnNotes path
| * Fix QOwnNotes pathLibravatar František Polášek2019-08-11
|/ | | | Every time QOwnNotes was started, setup Wizard was shown. Log shown: `Warning: cannot create xxx.config directory`
* update and harden file.profileLibravatar smitsohu2019-08-11
|
* added 'noblacklist ${PICTURES}' to mpv.profile (#2898)Libravatar veloute2019-08-11
| | | | | | | | * added 'noblacklist ${PICTURES}' to mpv.profile * Update mpv.profile fix typo
* rewrite/partial revert of 8bff773d6a7bf70c97b3d5b751df9ec0dd6c8b5dLibravatar smitsohu2019-08-09
| | | | | | | the commit in question introduced an early check of Firejail configuration file, which broke "firejail in firejail" for some sandboxes. see issue #2877
* Fix printer detection in okular and gwenviewLibravatar Vincent432019-08-07
|
* integrate private home options with nosound and x11 noneLibravatar smitsohu2019-08-07
| | | | fixes #2867
* private home: don't create unused temporary filesLibravatar smitsohu2019-08-07
|
* update gitignoreLibravatar smitsohu2019-08-07
|
* Fix #2866 -- private-etc needed fedora-release (#2890)Libravatar Jiri2019-08-05
| | | | * Fix #2866 -- private-etc needed os-release,redhat-release,system-release,system-release-cpe
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-25 20:22:29 +0000