aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAge
* Improve cross build support by using configured compiler instead of make defaultLibravatar Helmut Grohne2017-07-26
| | | | https://bugs.debian.org/869707
* mergesLibravatar netblue302017-07-25
|
* Merge pull request #1402 from topimiettinen/nosuid-noexec-nodev-proc-sysLibravatar netblue302017-07-25
|\ | | | | /proc/sys can be nosuid,noexec,nodev
| * /proc/sys can be nosuid,noexec,nodevLibravatar Topi Miettinen2017-07-25
| |
* | Merge pull request #1403 from topimiettinen/seccomp-add-syscallsLibravatar netblue302017-07-25
|\ \ | |/ |/| Block some obsolete or unusual syscalls
| * Block some obsolete or unusual syscallsLibravatar Topi Miettinen2017-07-25
|/
* Merge pull request #1397 from Panzerfather/masterLibravatar Fred Barclay2017-07-22
|\ | | | | Add access to trash for eog
| * Add access to trashLibravatar Panzerfather2017-07-23
|/ | | Eog needs access to trash to delete files
* apparmor fixesLibravatar netblue302017-07-21
|
* mergesLibravatar netblue302017-07-20
|
* Merge pull request #1393 from topimiettinen/improve-mountingLibravatar netblue302017-07-20
|\ | | | | Improve mount handling
| * Improve mount handlingLibravatar Topi Miettinen2017-07-19
| | | | | | | | | | noexec/read-only/read-write handling: copy underlying FS flags before remounting. If the flags are already OK, don't remount unnecessarily.
* | Merge pull request #1394 from topimiettinen/fix-typoLibravatar netblue302017-07-20
|\ \ | |/ |/| Fix typo usr->user
| * Fix typo usr->userLibravatar Topi Miettinen2017-07-19
|/ | | | | This typo may have prevented blacklists of /run/user/{uid}/gnupg and /run/user/{uid}/systemd from working.
* support for Xephyr screen sizeLibravatar netblue302017-07-19
|
* xvfb fixesLibravatar netblue302017-07-17
|
* Merge pull request #1390 from SpotComms/periodfixLibravatar netblue302017-07-17
|\ | | | | Fix #1383
| * Fix #1383Libravatar Tad2017-07-16
| |
* | Merge pull request #1372 from rccavalcanti/chromium_archLibravatar netblue302017-07-16
|\ \ | |/ |/| Fix permission denied for chromium-flags.conf in Arch
| * Fix permission denied for chromium-flags.conf in ArchLibravatar Rafael Cavalcanti2017-07-10
| |
* | Fix typoLibravatar Fred-Barclay2017-07-14
| |
* | Re-add .ssh to noblacklist for andriod-studio and idea.shLibravatar Fred-Barclay2017-07-14
| |
* | Merge pull request #1379 from announ/patch-1Libravatar Fred Barclay2017-07-13
|\ \ | | | | | | Add quiet to exiftool profile
| * | Add quiet to exiftool profileLibravatar announ2017-07-13
|/ /
* | Merge pull request #1377 from SpotComms/fixjavaLibravatar Fred Barclay2017-07-13
|\ \ | | | | | | Fix .java after e2449ae7d25925cec444ac08bbfb9cbc7199e647
| * | Fix .java after e2449ae7d25925cec444ac08bbfb9cbc7199e647Libravatar Tad2017-07-13
|/ /
* | Update after merge #1374Libravatar Fred-Barclay2017-07-13
| | | | | | | | | | This introduces blacklist ~/.java to disable-programs.inc, so it may break some existing profiles that depend on it.
* | Merge pull request #1374 from SpotComms/ideaLibravatar Fred Barclay2017-07-13
|\ \ | | | | | | Add profiles for IntelliJ IDEA and Android Studio
| * | Update idea.sh.profileLibravatar Fred Barclay2017-07-13
| | | | | | | | | Don't allow ~/.ssh access
| * | Update android-studio.profileLibravatar Fred Barclay2017-07-13
| | | | | | | | | Don't allow ~/.ssh access
| * | Add a profile for IntelliJ IDEA and Android StudioLibravatar Tad2017-07-11
| | |
* | | Cleanup from merges #1369 and #1373Libravatar Fred-Barclay2017-07-13
| | |
* | | fix xpra broken earlierLibravatar netblue302017-07-12
| | |
* | | cleanupLibravatar netblue302017-07-12
| | |
* | | Merge pull request #1373 from SpotComms/saLibravatar Fred Barclay2017-07-11
|\ \ \ | | | | | | | | Add a profile for SILENTARMY
| * | | Add a profile for SILENTARMYLibravatar Tad2017-07-11
| |/ /
* | | fix #1371; rework seccomp_filter_drop() functionLibravatar startx20172017-07-11
| | |
* | | profiles: tracelog breaks integrated browser in steamLibravatar Reiner Herrmann2017-07-11
| |/ |/| | | | | | | Thanks to @viq for the hint. Fixes: #1280
* | Merge branch 'master' of https://github.com/netblue30/firejailLibravatar netblue302017-07-10
|\ \
| * | Fix #1370Libravatar Fred-Barclay2017-07-09
| | |
| * | Merge pull request #1369 from SpotComms/peekLibravatar Fred Barclay2017-07-09
| |\ \ | | | | | | | | Add profile for Peek
| | * | Add profile for PeekLibravatar SpotComms2017-07-09
| | |/
* | / fix discretionary access control for sandboxes running as root with --noprofileLibravatar netblue302017-07-08
|/ /
* | fixing the previous fixLibravatar startx20172017-07-07
| |
* | fix firemon --nameLibravatar startx20172017-07-07
| |
* | run --netstats on 1s interval; caching user name.Libravatar startx20172017-07-07
| |
* | shorter firejail name in --top and --netstatsLibravatar startx20172017-07-07
| |
* | bugfix: fix --allusers when running as rootLibravatar startx20172017-07-07
|/
* mergesLibravatar netblue302017-07-05
|
* Merge pull request #1365 from SpotComms/masterLibravatar netblue302017-07-05
|\ | | | | Harden 50 profiles
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-07 09:26:06 +0000