Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | WebStorm: allow Dolphin to access its config file | Ted Robertson | 2021-04-05 |
| | |||
* | drop some stuff based on discussion with @rusty-snake | glitsj16 | 2021-04-04 |
| | |||
* | allow notifications + comment fixes | glitsj16 | 2021-04-04 |
| | |||
* | Add Librewolf Nightly profile | Vladislav Nepogodin | 2021-04-04 |
| | |||
* | dropbox: allow python3, fix for issue #4150 | Matthew Cline | 2021-04-01 |
| | | | | | | /usr/bin/dropbox needs access to python3, at least for dropbox command-line interface version 2020.03.04 as packaged by the RPM Fusion project. Fixes issue #4150 | ||
* | Merge pull request #4148 from glitsj16/master | glitsj16 | 2021-03-31 |
|\ | | | | | Improve comments in apparmor files | ||
| * | Add examples to allow running programs from specific home dir | glitsj16 | 2021-03-30 |
| | | |||
| * | Recommend doing overrides in local apparmor dir | glitsj16 | 2021-03-30 |
| | | |||
* | | Add localtime to signal-desktop's profile. | Nolan Leake | 2021-03-30 |
|/ | | | | Without it, all chat timestamps are in UTC. | ||
* | Fixes (man: allow rustup; Books -> gnome-books) | rusty-snake | 2021-03-28 |
| | |||
* | fix hardening comment | rusty-snake | 2021-03-24 |
| | | | | [skip ci] | ||
* | fix hardening comment | glitsj16 | 2021-03-24 |
| | |||
* | fix network access comment | glitsj16 | 2021-03-24 |
| | |||
* | Merge pull request #4126 from rusty-snake/better-renames | netblue30 | 2021-03-24 |
|\ | | | | | Rename chromium-common-hardened and feh-network … | ||
| * | Rename chromium-common-hardened and feh-network … | rusty-snake | 2021-03-21 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | …again I am still not really happy about the rename from #4028, #4029, #4030 and #4031. I've no problem with moving away .inc but I don't like the result. So here's a proposal to make this better: | NAME | DESCRIPTION | | ------------------------- | ------------------------------------------------------------ | | `*-addons.profile` | (include) Allow external addons | | `*-common.profile` | (include) Common parts across multiple profiles | | `*-hardened.inc.profile` | Further hardening which can not be made default | | `*-network.inc.profile` | Allow optional network access | | `*-whitelist.inc.profile` | Enabled whitelisting (which can not be made default) ¹ | | `*.inc.profile` | Other profile specific includes | | `*.profile` | A profile for a program | | `allow-*.inc` | Multiple `noblacklist`s that should always be used together | | `disable-*.inc` | `blacklist`ing | | `whitelist-*-common.inc` | common `whitelist`s | | `*.inc` | Other generic includes | | `globals.local` | User overrides for all profiles | | `*.local` | Per profile user overrides | ¹ can be used for programs like KeePassXC or editors. | ||
* | | Merge pull request #4116 from Neo00001/master | netblue30 | 2021-03-24 |
|\ \ | | | | | | | Update vmware.profile & dbus-policy for amarok | ||
| * | | Update amarok.profile | Neo00001 | 2021-03-21 |
| | | | |||
| * | | Update vmware.profile | Neo00001 | 2021-03-21 |
| | | | |||
| * | | Update vmware.profile | Neo00001 | 2021-03-19 |
| | | | |||
| * | | Update amarok.profile | Neo00001 | 2021-03-19 |
| | | | |||
* | | | Update k3b.profile | Neo00001 | 2021-03-23 |
| |/ |/| | | | #2989 | ||
* | | fixes for gnome-logs | glitsj16 | 2021-03-21 |
| | | |||
* | | Merge pull request #4119 from pirate486743186/patch-14 | Reiner Herrmann | 2021-03-21 |
|\ \ | | | | | | | [minor] .cache/youtube-viewer in disable-programs.inc | ||
| * | | forgoten whitelist | pirate486743186 | 2021-03-20 |
| | | | |||
| * | | .cache | pirate486743186 | 2021-03-20 |
| | | | |||
| * | | adding .cache/youtube-viewer | pirate486743186 | 2021-03-20 |
| | | | |||
* | | | fix private-lib | glitsj16 | 2021-03-20 |
|/ / | |||
* | | Fix nheko (#4117) | rusty-snake | 2021-03-19 |
| | | | | | | closes #4115 | ||
* | | man.progile: readonly instead of whitelist | rusty-snake | 2021-03-19 |
| | | |||
* | | Merge pull request #4069 from rusty-snake/hasher-profiles | netblue30 | 2021-03-19 |
|\ \ | | | | | | | Add profile for checksum tools | ||
| * | | Add profile for checksum tools | rusty-snake | 2021-03-14 |
| | | | | | | | | | | | | | | | | | | * Oops! Thanks for catching. * Add quiet | ||
* | | | Merge pull request #3984 from nidamanx/patch-1 | netblue30 | 2021-03-19 |
|\ \ \ | | | | | | | | | Fix for KeePassXC plugin | ||
| * | | | Sorting | Nicola Davide Mannarelli | 2021-02-14 |
| | | | | | | | | | | | | | | | | Moved in the right place as in template https://github.com/netblue30/firejail/blob/master/etc/templates/profile.template | ||
| * | | | Update etc/profile-a-l/firefox.profile | Nicola Davide Mannarelli | 2021-02-13 |
| | | | | | | | | | | | | Co-authored-by: rusty-snake <41237666+rusty-snake@users.noreply.github.com> | ||
| * | | | Fix for KeePassXC plugin | Nicola Davide Mannarelli | 2021-02-13 |
| | | | | | | | | | | | | | | | | | | | | KeePassXC changed the socket name. https://github.com/keepassxreboot/keepassxc/commit/a145bf91191f0a4630a7e31654aff8a8dfd09bf0 Keep also old socket name in whitelist for back compatibility | ||
* | | | | Merge pull request #4102 from pirate486743186/patch-13 | netblue30 | 2021-03-19 |
|\ \ \ \ | | | | | | | | | | | fixing dbus filtering for engrampa | ||
| * | | | | fixing dbus filtering for engrampa | pirate486743186 | 2021-03-15 |
| | | | | | |||
* | | | | | Merge pull request #4101 from pirate486743186/patch-12 | netblue30 | 2021-03-19 |
|\ \ \ \ \ | | | | | | | | | | | | | [minor] qcomicbook and pipe-viewer in disable-programs | ||
| * | | | | | adding mcomix | pirate486743186 | 2021-03-18 |
| | | | | | | |||
| * | | | | | qcomicbook and pipe-viewer in disable-programs | pirate486743186 | 2021-03-15 |
| | | | | | | | | | | | | | | | | | | qcomicbook is the "PawelStolowski" folders | ||
* | | | | | | Merge pull request #4085 from tredondo/tredondo-nodejs | netblue30 | 2021-03-19 |
|\ \ \ \ \ \ | | | | | | | | | | | | | | | Document enabling debugging for Node.js | ||
| * | | | | | | Remove comment line advising to look at inline comments | Ted Robertson | 2021-03-11 |
| | | | | | | | |||
| * | | | | | | Document enabling debugging for Node.js | Ted Robertson | 2021-03-11 |
| | | | | | | | |||
* | | | | | | | Merge pull request #4098 from tredondo/master | netblue30 | 2021-03-19 |
|\ \ \ \ \ \ \ | |_|_|_|_|_|/ |/| | | | | | | Create bcompare.profile | ||
| * | | | | | | Uncomment nodvd, reuse "uncomment next" msg | Ted Robertson | 2021-03-14 |
| | | | | | | | |||
| * | | | | | | Allow external applications to paly sound files | Ted Robertson | 2021-03-13 |
| | | | | | | | |||
| * | | | | | | No # ipc-namespace | Ted Robertson | 2021-03-13 |
| | | | | | | | | | | | | | | | | | | | | | Co-authored-by: rusty-snake <41237666+rusty-snake@users.noreply.github.com> | ||
| * | | | | | | noblacklist ${HOME}/.config/bcompare | Ted Robertson | 2021-03-13 |
| | | | | | | | |||
| * | | | | | | Follow meld convention for disable-programs.inc | Ted Robertson | 2021-03-13 |
| | | | | | | | |||
| * | | | | | | Uncomment shell none, tracelog, dbus-* | Ted Robertson | 2021-03-13 |
| | | | | | | |