Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | Consistent home directory nomenclature | Fred-Barclay | 2017-11-17 |
| | |||
* | disable non-abstract session bus address | smitsohu | 2017-10-22 |
| | | | | | systematically blacklist /run/user/*/bus in all profiles with 'net none'. targets distros like Fedora | ||
* | added private-lib to eog, eom, file, gpicview, less, strings, and tar | netblue30 | 2017-10-16 |
| | |||
* | add whitelist-var-common to some profiles | smitsohu | 2017-09-25 |
| | |||
* | various profile fixes | smitsohu | 2017-08-22 |
| | |||
* | Fix nodvd placement | Tad | 2017-08-13 |
| | |||
* | added nodvd to most profiles | netblue30 | 2017-08-13 |
| | |||
* | Fix notv placement | Tad | 2017-08-11 |
| | |||
* | added notv to most profiles | netblue30 | 2017-08-11 |
| | |||
* | Unify all profiles | Tad | 2017-08-07 |
| | |||
* | Add back net none/netfilter as needed | Fred-Barclay | 2017-08-02 |
| | |||
* | Initial adding of memory-deny-write-execute to profiles | Tad | 2017-08-02 |
| | | | | | | | | - mdwe breaks most vm-based languages so python/java/javascript and some mono programs are not compatible - mdwe also breaks most 3d accelerated programs such as 3d games - mdwe is similar to PaX's mprotect meaning PaX flag managers can be used as reference -- See https://github.com/copperhead/paxd-archive/blob/master/paxd.conf -- See https://github.com/nning/linux-pax-flags | ||
* | Harden profiles | Tad | 2017-08-02 |
| | | | | | | | | - Added 'disable-devel.conf' to many profiles - Added 'disable-mnt' to many profiles - Added 'noexec' to many profiles - Removed 'netfilter' and 'net none' from profiles with 'protocol unix' - Cleaned up profiles using defaults | ||
* | Add access to trash | Panzerfather | 2017-07-23 |
| | | | Eog needs access to trash to delete files | ||
* | test: add novideo to profiles (part 1) | Fred Barclay | 2017-06-15 |
| | |||
* | commented out ipc-namespace in most profiles - it breaks newer versions of ↵ | netblue30 | 2017-05-25 |
| | | | | GDK with the following error: Gdk-ERROR **: The program 'thunderbird' received an X Window System error | ||
* | added /etc/firejail/globals.local for global customizations | netblue30 | 2017-05-23 |
| | |||
* | Potential fix for #1280 | Fred Barclay | 2017-05-19 |
| | | | | Many steam directories can begin with either lower- or upper-case 's'. | ||
* | Corrections from earlier noblacklist steam for image viewers | Fred Barclay | 2017-05-06 |
| | |||
* | Allow common image viewers to access ~/steam/steam/userdata (Fix for #1267) | Fred Barclay | 2017-05-06 |
| | | | | | These are all the image viewers I know of. We'll probably need to edit a few that I missed in the future. | ||
* | Harden more profiles | Tad | 2017-04-17 |
| | |||
* | Harden 19 more profiles | Tad | 2017-04-15 |
| | |||
* | persistent support for all profile files | netblue30 | 2017-02-09 |
| | |||
* | fixed spacing in profiles | valoq | 2016-11-19 |
| | |||
* | added nosound | valoq | 2016-11-03 |
| | |||
* | squash attempt 2 | Fred-Barclay | 2016-10-24 |
| | |||
* | added profiles | valoq | 2016-10-18 |