aboutsummaryrefslogtreecommitdiffstats
path: root/etc
Commit message (Collapse)AuthorAge
* Blacklist ~/.minisign in disable-commonLibravatar rusty-snake2021-09-07
|
* Profile fixesLibravatar rusty-snake2021-09-04
| | | | | | | | | | - disable-programs.inc: blacklist ${HOME}/.local/state/pipewire If you did not yet noticed, on 08th May 2021 the XDG Base Directory Specification 0.8 was resleased (the first update since 2010). New are $XDG_STATE_HOME and $HOME/.local/bin. - keepassxc: mkdirs are necessary - gnote: harden - pngquant: harden
* Update wrc for Arch Linux (#4507)Libravatar Martynas Janonis2021-09-03
| | | This is a quick fix of #4482 for distributions that link /etc/resolv.conf to /run/systemd/resolve/stub-resolv.conf (Arch Linux is one of them).
* Fix #4506 -- Freetube does not startLibravatar rusty-snake2021-09-03
| | | | Freetube from AUR uses a wrapper script
* Update wrcLibravatar rusty-snake2021-09-03
| | | | | | - whitelist /run/resolvconf/resolv.conf -- Fixes #4482 - Drop whitelist for /run/systemd/resolve/stub-resolv.conf, /run/systemd/resolve/resolv.conf is the right path AIUI.
* Merge pull request #4477 from bjpbakker/multimc5-lwjglLibravatar netblue302021-08-30
|\ | | | | multimc5: fix exec of LWJGL libraries
| * multimc5: fix exec of LWJGL librariesLibravatar Bart Bakker2021-08-24
| |
* | Merge pull request #4475 from davidebeatrici/telegram-desktop-2.6.1-fixLibravatar netblue302021-08-30
|\ \ | | | | | | telegram.profile: whitelist /usr/share/TelegramDesktop
| * | telegram.profile: whitelist /usr/share/TelegramDesktopLibravatar Davide Beatrici2021-08-21
| |/ | | | | | | | | | | | | | | Telegram loads packed resources dynamically since 443eef3202ee43c2e820cc550fbcc70a7609f452. In the official Debian package, the relevant file can be found at /usr/share/TelegramDesktop/tresources.rcc. If the file cannot be loaded, the program fails to launch and prints "Packed resources not found".
* | Merge pull request #4486 from pirate486743186/yt-dlp-profileLibravatar netblue302021-08-30
|\ \ | | | | | | create yt-dlp.profile
| * | create yt-dlp.profileLibravatar pirate4867431862021-08-27
| |/
* | Merge pull request #4484 from pirate486743186/gallery-dlLibravatar netblue302021-08-30
|\ \ | | | | | | creating gallery-dl.profile
| * | creating gallery-dl.profileLibravatar pirate4867431862021-08-27
| |/
* / updating youtube-viewers-common.profile (#4485)Libravatar pirate4867431862021-08-29
|/
* Update celluloid.profileLibravatar rusty-snake2021-08-16
| | | | Fix #4469
* add disable-X11.inc to profile templateLibravatar Reiner Herrmann2021-08-14
|
* Move disable-passwordmgr.inc into disable-common.inc/disable-programs.inc ↵Libravatar rusty-snake2021-08-12
| | | | follow up
* Move disable-passwordmgr.inc into disable-common.inc/disable-programs.inc ↵Libravatar rusty-snake2021-08-12
| | | | | (#4461) See #4454
* Create disable-X11.inc (#4462)Libravatar rusty-snake2021-08-11
|
* Update keepassxc.profileLibravatar rusty-snake2021-08-09
| | | | | | | - Add whitelist-run-common.inc - Drop netlink (there are no error or borken feature for me (including auto-type)) - Second update for the dbus-policy
* Add /run/media to whitelist-run-common.incLibravatar rusty-snake2021-08-09
|
* Add rmenv RESTIC_* to disable-passwdmgr.incLibravatar rusty-snake2021-08-09
|
* Fix zim and rednotebookLibravatar rusty-snake2021-08-09
| | | | Introduced in 2e4d52ec
* Correct directory for sway.profile and io.github.lainsce.Notejot.profileLibravatar rusty-snake2021-08-09
|
* remove cargo registry token for crates.io from environmentLibravatar Reiner Herrmann2021-08-06
|
* Revice keepassxc's dbus policyLibravatar rusty-snake2021-08-05
|
* Add wru to firefox-common, chromium-common and profile.templateLibravatar rusty-snake2021-08-04
| | | | | | | Still unresolved: > If someone who use systemd-resolved can say more which resolv.conf is necessary on such system. > whitelist /run/systemd/resolve/resolv.conf > whitelist /run/systemd/resolve/stub-resolv.conf
* Profile fixesLibravatar rusty-snake2021-08-04
| | | | | | | | | | - Fix #4157 -- [Feature] Should rmenv GitHub auth tokens There are still more token variables from other program that should be added. - Fix #4093 -- darktable needs read access to liblua* - Fix #4383 -- move noblacklist ${HOME}/.bogofilter to email-common.profile for claws-mail (and other mailers) - Fix xournalpp.profile - syscalls.txt: ausyscall i386 -> firejail --debug-syscalls32
* Added ~/Private blacklist (#4434)Libravatar caydey2021-08-03
|
* Add electron[0-9]{0,2} to all electron redirect …Libravatar rusty-snake2021-08-01
| | | | …profiles with private-bin
* Fixup: Fix Firefox 'Profile not found' - whitelist /run/user/xxx/firefoxLibravatar rusty-snake2021-07-28
|
* Merge branch 'master' of https://github.com/netblue30/firejailLibravatar Fred Barclay2021-07-28
|\
| * Merge pull request #4420 from glitsj16/dciLibravatar netblue302021-07-28
| |\ | | | | | | ordering and additions
| | * drop trailing slashes from openrc itemsLibravatar glitsj162021-07-26
| | | | | | | | | As suggested in https://github.com/netblue30/firejail/pull/4420#discussion_r676929867.
| | * ordering and additionsLibravatar glitsj162021-07-26
| | |
| * | Merge branch 'master' into masterLibravatar netblue302021-07-28
| |\ \
| * | | moved rules from firefox-common.profile to firefox.profileLibravatar 0x6a2021-07-20
| | | |
| * | | Blacklist /*firefox* except for firefox itselfLibravatar 0x6a2021-07-20
| | | |
| * | | Fix Firefox 'Profile not found' - whitelist /run/user/xxx/firefoxLibravatar 0x6a2021-07-17
| | | |
* | | | Revert allow/deny additional filesLibravatar Fred Barclay2021-07-28
| |/ / |/| | | | | | | | | | | See #4410 8b50039a1fad123b90172fadc85bc232e97eb6d1
* | | Merge pull request #4412 from netblue30/Neo00001-patch-1Libravatar netblue302021-07-28
|\ \ \ | | | | | | | | Update telegram.profile
| * | | Update telegram.profileNeo00001-patch-1Libravatar Neo000012021-07-20
| | | | | | | | | | | | | | | | | | | | | | | | Recently I have noticed these two- - org.telegram.desktop.BaseGtkIntegration-0fe332cb424bfc37f394ccb976afec41 - org.telegram.desktop.GtkIntegration-0fe332cb424bfc37f394ccb976afec41 & without dbus rule for these two, telegram isn't quiting.
* | | | Merge pull request #4419 from glitsj16/ncdu2Libravatar netblue302021-07-28
|\ \ \ \ | | | | | | | | | | add ncdu2 redirect profile
| * | | | Create ncdu2.profileLibravatar glitsj162021-07-26
| | |_|/ | |/| |
* | | | improved reordening for ids.configLibravatar glitsj162021-07-28
| | | |
* | | | reordering and fix for ids.configLibravatar glitsj162021-07-28
| | | |
* | | | Merge branch 'master' of ssh://github.com/netblue30/firejailLibravatar netblue302021-07-28
|\ \ \ \
| * | | | kodi.profile: Add Lutris Kodi Addon noteLibravatar rusty-snake2021-07-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Closes #3785 -- Allowing calling specific apps outside the sandbox or with a different firejail profile The idea isn't worng but should be reweiten in a seperate issue without all the kodi/lutris clutter.
| * | | | Update etc/templates/syscalls.txtLibravatar rusty-snake2021-07-28
| | | | | | | | | | | | | | | | | | | | Rework + suggest --seccomp-error-action=log
| * | | | Refactor code.profile as electron redirectLibravatar rusty-snake2021-07-28
| | | | | | | | | | | | | | | | | | | | closes #4408
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-05 14:52:53 +0000