Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | add HAS_NODBUS conditional, ${RUNUSER} makro | 2018-12-07 | |
| | |||
* | profile parser testing | 2018-11-08 | |
| | |||
* | Add new config option to disable U2F in browsers, enabled by default | 2018-11-05 | |
| | |||
* | Allow include to search userdir then systemdir for "bare" profile file names. | 2018-10-17 | |
| | |||
* | Add support for rudimentary conditionals in profiles, currently only the ↵ | 2018-10-16 | |
| | | | | HAS_APPIMAGE conditional is supported. | ||
* | Allow specifying a profile "name" with the profile option (eg. ↵ | 2018-10-15 | |
| | | | | --profile=firefox). | ||
* | rename expand_home -> expand_macros to better reflect usage and remove ↵ | 2018-10-15 | |
| | | | | unneeded homedir argument. | ||
* | add switch to disable/enable private-cache | 2018-09-10 | |
| | |||
* | cleanup | 2018-08-28 | |
| | |||
* | removed --disable-bind configuration option; some ohter minor cleanup | 2018-08-22 | |
| | |||
* | clear all warnings from cppcheck static code analysis | 2018-08-11 | |
| | | | | obtained with: cppcheck --enable=warning --force --inconclusive --quiet ~/firejail/src | ||
* | --ignore cleanup | 2018-08-04 | |
| | |||
* | removed compile time --enable-network=restricted, --net=none allowed even if ↵ | 2018-07-26 | |
| | | | | networking was disabled at compile time or at run time, fixed issue #2061 | ||
* | rework --netmask | 2018-07-17 | |
| | |||
* | --netmask option | 2018-07-06 | |
| | |||
* | Revert "mounting a tmpfs on ~/.cache directory (private-cache) by default" | 2018-06-14 | |
| | | | | This reverts commit caa7ad8714206a158123773ddcaca6ef219a5501. | ||
* | Add --keep-dev-shm (undocumented for now). | 2018-06-13 | |
| | |||
* | Change --nousb to --nou2f per suggestion on last commit. | 2018-06-12 | |
| | |||
* | Add --nousb option | 2018-06-12 | |
| | |||
* | mounting a tmpfs on ~/.cache directory (private-cache) by default | 2018-06-12 | |
| | |||
* | add private-cache option | 2018-06-04 | |
| | | | | implementation is based on an idea of James Henstridge, Canonical | ||
* | Add --keep-var-tmp and associated profile option | 2018-05-01 | |
| | |||
* | cleanup | 2018-04-20 | |
| | |||
* | add --noautopulse arg for complex pulse setups | 2018-04-01 | |
| | | | | such as remote pulse servers or non-standard socket paths | ||
* | --nodbus, first draft for #1825 | 2018-03-26 | |
| | |||
* | split run files processing in a separate file - src/firejail/run_files.c | 2018-03-17 | |
| | |||
* | overlay fixes and additional hardening | 2018-01-31 | |
| | |||
* | add check for ipv6 address syntax | 2018-01-16 | |
| | |||
* | added support for IPv6 DNS configuration - #1722 | 2018-01-16 | |
| | |||
* | move copyright statement to 2018 | 2018-01-14 | |
| | |||
* | redirect output messages to stderr | 2017-12-14 | |
| | |||
* | strip trailing whitespace | 2017-11-19 | |
| | |||
* | fix --ignore=quiet | 2017-10-30 | |
| | |||
* | modif: remount-proc-sys deprecated from firejail.config | 2017-10-27 | |
| | |||
* | --timeout, fix #1614 | 2017-10-25 | |
| | |||
* | implemented --rlimit-cpu - set max CPU time for processes running in the ↵ | 2017-10-24 | |
| | | | | sandbox; for issue #1614, more to come... | ||
* | allow blacklists noexec etc. in private home directories; fix bug #1608 | 2017-10-20 | |
| | |||
* | Merge pull request #1604 from gosre/master | 2017-10-15 | |
|\ | | | | | Addition of RLIMIT_AS | ||
| * | RLIMIT_AS | 2017-10-13 | |
| | | |||
* | | enhanced globbing for --blacklist | 2017-10-13 | |
|/ | |||
* | --writable-run-user, solving ssh/gnupg authentication problems for smarcards | 2017-09-14 | |
| | |||
* | --profile.print option | 2017-09-02 | |
| | |||
* | Feature: switch/config option to block secondary architectures | 2017-08-19 | |
| | | | | | | | | | Add a feature for a new (opt-in) command line switch and config file option to block secondary architectures entirely. Also block changing Linux execution domain with personality() system call for the primary architecture. Closes #1479 | ||
* | added --nodvd | 2017-08-12 | |
| | |||
* | --notv for #1446 | 2017-08-10 | |
| | |||
* | private-lib: support for /etc/firejail/firejail.config | 2017-08-04 | |
| | |||
* | Fixes for the private-lib and memory-deny-write-execute features | 2017-07-30 | |
| | |||
* | Memory-deny-write-execute feature | 2017-07-30 | |
| | | | | Feature to block attempts to create writable and executable memory. | ||
* | Private /lib feature | 2017-07-30 | |
| | |||
* | support for Xephyr screen size | 2017-07-19 | |
| |