| Commit message (Collapse) | Author | Age |
| |
|
|
|
| |
Thanks to @rusty-snake for his comment in #3198.
|
|
|
| |
Thanks to @rusty-snake for suggesting to move /usr/share/file to wusc in #3198.
|
|
|
| |
This fixes #3198.
|
| |
|
| |
|
|
|
| |
Thanks to @s-hamman for reporting this in the comments of #3193.
|
|
|
| |
Thanks to @s-hamman for reporting this in the comments of #3193.
|
| |
|
|
|
| |
Thanks to @rusty-snake's comment in https://github.com/netblue30/firejail/pull/3159.
|
| |
|
| |
|
| |
|
| |
|
|
|
| |
Thanks to https://github.com/s-hamann for helping to harden the zathura profile.
|
|
|
|
|
|
|
|
| |
* move mkdir in zathura.profile
* harden zathura.profile
* fix private-lib in zathura.profile
|
| |
|
|
|
|
|
|
| |
* clarify dropping python2 support in meld.profile
* properly comment the python2 situation in meld
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Update whois.profile
More details in https://github.com/netblue30/firejail/issues/3153
* Update etc/whois.profile private-etc
Alphabetic order
Co-Authored-By: rusty-snake <print_hello_world+GitHub@protonmail.com>
Co-authored-by: rusty-snake <print_hello_world+GitHub@protonmail.com>
|
|\
| |
| | |
Blacklisting openrc paths by defaults
|
| | |
|
| |
| |
| |
| |
| |
| | |
- move ignores to top
- add remove netlink protocol from whalebird
- ignore caps.drop all in wire-desktop
|
| |
| |
| |
| |
| |
| |
| |
| | |
* refactor as electron redirect
* refactor as electron redirect
* refactor as electron redirect
|
| |
| |
| | |
whitelist ${DOWNLOADS} is already in the included electron.profile.
|
| |
| |
| | |
We have PHP items blacklisted in disable-interpreters.inc that never get noblacklisted. This PR fixes that.
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
* local customizations for allow-common-devel.inc
* local customizations for allow-java.inc
* local customizations for allow-lua.inc
* local customizations for allow-perl.inc
* local customizations for allow-python2.inc
* local customizations for allow-python3.inc
* local customizations for allow-ruby.inc
|
| |
| |
| |
| |
| |
| | |
* blacklist gjs in disable-interpreters
* Update
|
| | |
|
| |
| |
| | |
Fixes #3175.
|
| |
| |
| | |
Fixes #2681.
|
| |
| |
| |
| | |
Thanks @DurtyDev for testing (netblue30/firetools#47)
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
* Rework thunderbird.profile (1)
* Rework thunderbird.profile (2)
* Rework thunderbird.profile (3)
* Rework thunderbird.profile (4)
* Rework thunderbird.profile (5)
* Rework thunderbird.profile (6)
|
| |
| |
| |
| | |
see also #3170
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
* unbreak audio-recorder
Support both X11 and Wayland by default. Users can add 'blacklist ${RUNUSER}/wayland-*' or 'x11 none' in their audio-recorder.local.
* unbreak ddgtk
Support both X11 and Wayland by default. Users can add 'blacklist ${RUNUSER}/wayland-*' or 'x11 none' in their ddgtk.local.
* unbreak and harden gconf-editor
Support both X11 and Wayland by default. Also whitelist /usr/share/gconf-editor for wusc.
* unbreak seahorse
Support both X11 and Wayland by default.
* add blacklist ${RUNUSER}/wayland-* to dnscrypt-proxy
|
| |
| |
| |
| | |
Thanks @Micha-Btz for all the testing.
|
| | |
|
| |
| |
| |
| | |
https://github.com/netblue30/firejail/issues/3164#issuecomment-575892401
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
* refactor claws-mail as whitelist profile
* refactor sylpheed as whitelist profile
* Create email-common.profile
* safeguard ${DOCUMENTS}
* Add disable-xdg to email-common.profile
Thanks @rusty-snake for the review.
|
| | |
|
| |
| |
| |
| | |
…les with 'x11 none'
|
| |
| |
| |
| | |
…les with 'blacklist /tmp/.X11-unix'
|
| | |
|
| | |
|