Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | Initial adding of memory-deny-write-execute to profiles | Tad | 2017-08-02 |
| | | | | | | | | - mdwe breaks most vm-based languages so python/java/javascript and some mono programs are not compatible - mdwe also breaks most 3d accelerated programs such as 3d games - mdwe is similar to PaX's mprotect meaning PaX flag managers can be used as reference -- See https://github.com/copperhead/paxd-archive/blob/master/paxd.conf -- See https://github.com/nning/linux-pax-flags | ||
* | Harden profiles | Tad | 2017-08-02 |
| | | | | | | | | - Added 'disable-devel.conf' to many profiles - Added 'disable-mnt' to many profiles - Added 'noexec' to many profiles - Removed 'netfilter' and 'net none' from profiles with 'protocol unix' - Cleaned up profiles using defaults | ||
* | test: add novideo to profiles (part 1) | Fred Barclay | 2017-06-15 |
| | |||
* | commented out ipc-namespace in most profiles - it breaks newer versions of ↵ | netblue30 | 2017-05-25 |
| | | | | GDK with the following error: Gdk-ERROR **: The program 'thunderbird' received an X Window System error | ||
* | added /etc/firejail/globals.local for global customizations | netblue30 | 2017-05-23 |
| | |||
* | Harden more profiles | Tad | 2017-04-17 |
| | |||
* | Harden 19 more profiles | Tad | 2017-04-15 |
| | |||
* | persistent support for all profile files | netblue30 | 2017-02-09 |
| | |||
* | blacklisted various program files | valoq | 2016-12-01 |
| | |||
* | reversed incorrect changes | valoq | 2016-11-19 |
| | |||
* | profile fixes | netblue30 | 2016-11-05 |
| | |||
* | private-tmp changes | valoq | 2016-11-03 |
| | |||
* | Allow evince to access /tmp | Dara Adib | 2016-10-09 |
| | | | | | firefox will save files under /tmp/mozilla_* and try to open them with evince when evince is the default PDF reader. | ||
* | Added tracelog | Fred-Barclay | 2016-09-25 |
| | |||
* | If you give a mouse a cookie... | Fred-Barclay | 2016-07-09 |
| | |||
* | profile update | netblue30 | 2016-06-23 |
| | |||
* | private-bin conversion | netblue30 | 2016-06-10 |
| | |||
* | private-bin conversion | netblue30 | 2016-06-10 |
| | |||
* | merged Various #542 pull request from Fred-Barclay | netblue30 | 2016-05-31 |
| | |||
* | profiles: Add nonewprivs where sensible | The Fox in the Shell | 2016-05-25 |
| | |||
* | delete blacklist wine from profiles | avoidr | 2016-04-12 |
| | |||
* | introducing disable-passwdmgr.inc | netblue30 | 2016-03-28 |
| | |||
* | consolidated disable-terminals into disable-common | netblue30 | 2016-03-27 |
| | |||
* | consolidating disable-mgmt and disable-sercret into disable-common | netblue30 | 2016-03-26 |
| | |||
* | profile work | netblue30 | 2016-03-26 |
| | |||
* | profile update | netblue30 | 2016-03-12 |
| | |||
* | split out terminal blacklisting in disable-terminals.inc | netblue30 | 2016-02-12 |
| | |||
* | tracelog fixes | netblue30 | 2015-12-06 |
| | |||
* | traclog added to various profiles | netblue30 | 2015-12-06 |
| | |||
* | added disable-devel.inc | netblue30 | 2015-11-01 |
| | |||
* | merged disable-history.inc into disable-common.inc | netblue30 | 2015-10-30 |
| | |||
* | enable --protocol by default in profiles | netblue30 | 2015-10-28 |
| | |||
* | disabled Wine and VirtualBox in default profiles | netblue30 | 2015-09-24 |
| | |||
* | fixes | netblue30 | 2015-09-24 |
| | |||
* | security profile work | netblue30 | 2015-09-24 |
| | |||
* | cleanup | netblue30 | 2015-09-01 |
| | |||
* | support net none in profile files | netblue30 | 2015-08-22 |
| | |||
* | disable-history.inc integration - included in all profile files | netblue30 | 2015-08-12 |
| | |||
* | Baseline firejail 0.9.28 | netblue30 | 2015-08-08 |