Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | Partial revert of f2fdcf7361f99d4b62d6427d078445c2ea1dc6cb for gedit | Tad | 2018-01-22 |
| | | | | - This appears to be a general issue with private-lib, that might've already been fixed in master | ||
* | Allow audio in Tor browser, and fix gedit not launching | Tad | 2018-01-22 |
| | | | | - Tor browser doesn't have nosound, so include pulse in private-etc | ||
* | disable non-abstract session bus address | smitsohu | 2017-10-22 |
| | | | | | systematically blacklist /run/user/*/bus in all profiles with 'net none'. targets distros like Fedora | ||
* | Add private-lib to gedit and pluma. | Fred-Barclay | 2017-10-20 |
| | | | | | | | Note that on Arch at least, pluma starts without problems even if the private-lib filter is empty, while gedit requires `private-lib gedit`. We can probably do something similar for xed. | ||
* | Fixup c6259375dff79484b9f3d587da9fbfa76a3b68b9 | Tad | 2017-10-05 |
| | |||
* | Tighten multiple profiles. | Fred-Barclay | 2017-10-04 |
| | | | | | This adds whitelist-var-common, machine-id, memory-deny-write-execute, and noexec home and tmp when possible. | ||
* | whitelist /var | netblue30 | 2017-10-04 |
| | |||
* | Misc fixes | Tad | 2017-09-27 |
| | |||
* | various profile fixes | smitsohu | 2017-08-22 |
| | |||
* | Fix nodvd placement | Tad | 2017-08-13 |
| | |||
* | added nodvd to most profiles | netblue30 | 2017-08-13 |
| | |||
* | Fix notv placement | Tad | 2017-08-11 |
| | |||
* | added notv to most profiles | netblue30 | 2017-08-11 |
| | |||
* | Fix comments in 88 profiles | Tad | 2017-08-07 |
| | | | | There may actually be some other comments that were removed, but the bulk have been restored | ||
* | Unify all profiles | Tad | 2017-08-07 |
| | |||
* | Add back net none/netfilter as needed | Fred-Barclay | 2017-08-02 |
| | |||
* | Harden profiles | Tad | 2017-08-02 |
| | | | | | | | | - Added 'disable-devel.conf' to many profiles - Added 'disable-mnt' to many profiles - Added 'noexec' to many profiles - Removed 'netfilter' and 'net none' from profiles with 'protocol unix' - Cleaned up profiles using defaults | ||
* | commented out ipc-namespace in most profiles - it breaks newer versions of ↵ | netblue30 | 2017-05-25 |
| | | | | GDK with the following error: Gdk-ERROR **: The program 'thunderbird' received an X Window System error | ||
* | added /etc/firejail/globals.local for global customizations | netblue30 | 2017-05-23 |
| | |||
* | Harden more profiles | Tad | 2017-04-17 |
| | |||
* | Harden 19 more profiles | Tad | 2017-04-15 |
| | |||
* | persistent support for all profile files | netblue30 | 2017-02-09 |
| | |||
* | many new profiles | valoq | 2016-11-19 |