Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | modif: --profile-path was deprecated | netblue30 | 2017-10-27 |
| | |||
* | --timeout, fix #1614 | netblue30 | 2017-10-25 |
| | |||
* | implemented --rlimit-cpu - set max CPU time for processes running in the ↵ | startx2017 | 2017-10-24 |
| | | | | sandbox; for issue #1614, more to come... | ||
* | merge --rlimit-as | startx2017 | 2017-10-15 |
| | |||
* | Update manpages to use HTTPS links | Kunal Mehta | 2017-10-07 |
| | | | | | All of these websites support HTTPS, and nearly all of them redirect to it anyways. | ||
* | --writable-run-user, solving ssh/gnupg authentication problems for smarcards | netblue30 | 2017-09-14 |
| | |||
* | Feature: switch/config option to block secondary architectures | Topi Miettinen | 2017-08-19 |
| | | | | | | | | | Add a feature for a new (opt-in) command line switch and config file option to block secondary architectures entirely. Also block changing Linux execution domain with personality() system call for the primary architecture. Closes #1479 | ||
* | private-lib | netblue30 | 2017-08-17 |
| | |||
* | memory-deny-write-execute | netblue30 | 2017-08-17 |
| | |||
* | added --nodvd | netblue30 | 2017-08-12 |
| | |||
* | typo | Reiner Herrmann | 2017-08-10 |
| | |||
* | --notv for #1446 | startx2017 | 2017-08-10 |
| | |||
* | support for Xephyr screen size | netblue30 | 2017-07-19 |
| | |||
* | per-profile disable-mnt | netblue30 | 2017-07-04 |
| | |||
* | merges | netblue30 | 2017-06-22 |
| | |||
* | novideo fixes | netblue30 | 2017-06-11 |
| | |||
* | --novideo option | Fred Barclay | 2017-05-22 |
| | | | | | Still a work in progress. Code needs cleanup and improvement, but it does block /dev/video* in all of my tests so far. | ||
* | man pages | netblue30 | 2017-04-28 |
| | |||
* | --nowhitelist | netblue30 | 2017-03-09 |
| | |||
* | allow /tmp in mkdir and mkfile profile commands | netblue30 | 2017-03-07 |
| | |||
* | xvfb X11 server support (--x11=xvfb) | netblue30 | 2017-03-03 |
| | |||
* | adding macro for include command in profile files | netblue30 | 2017-02-09 |
| | |||
* | --writable-var-log | netblue30 | 2017-01-30 |
| | |||
* | --hosts-file option | netblue30 | 2017-01-22 |
| | |||
* | fix PulseAudio/machine-id problem | netblue30 | 2017-01-18 |
| | |||
* | local customization | netblue30 | 2017-01-14 |
| | |||
* | spoof machine-id | netblue30 | 2016-12-05 |
| | |||
* | private-opt, private-srv | netblue30 | 2016-11-30 |
| | |||
* | private-tmp changes | valoq | 2016-11-03 |
| | |||
* | added /srv in whitelist option | valoq | 2016-10-15 |
| | |||
* | --x11=xorg | netblue30 | 2016-10-03 |
| | |||
* | renamed --x11=block to --x11=none, brought back the requirement for network ↵ | netblue30 | 2016-10-02 |
| | | | | namespaces for x11 sandboxing | ||
* | Fix typos found by lintian | Reiner Herrmann | 2016-10-02 |
| | |||
* | --veth-name option | netblue30 | 2016-09-28 |
| | |||
* | --no3d - disable 3D hardware acceleration | netblue30 | 2016-09-28 |
| | |||
* | allusers support in profile files | netblue30 | 2016-09-25 |
| | |||
* | update man | Aleksey Manevich | 2016-09-23 |
| | |||
* | document blacklist-nolog | netblue30 | 2016-09-19 |
| | |||
* | remove man firejail-config | netblue30 | 2016-09-19 |
| | |||
* | update man | Aleksey Manevich | 2016-09-15 |
| | |||
* | update man | Aleksey Manevich | 2016-09-10 |
| | |||
* | bringing back --private-home | netblue30 | 2016-09-04 |
| | |||
* | x11 command in profile files | netblue30 | 2016-08-22 |
| | |||
* | fixed whitelist description in man pages | netblue30 | 2016-08-21 |
| | |||
* | apparmor | netblue30 | 2016-08-02 |
| | |||
* | added quiet profile command | netblue30 | 2016-08-01 |
| | |||
* | Allow recursive mkdir (Closes #305) | Reiner Herrmann | 2016-07-30 |
| | |||
* | --noexec | netblue30 | 2016-07-10 |
| | |||
* | seccomp filter update | netblue30 | 2016-07-09 |
| | |||
* | added mkfile profile command | netblue30 | 2016-07-08 |
| |