aboutsummaryrefslogtreecommitdiffstats
path: root/src/man/firejail.txt
Commit message (Collapse)AuthorAge
* removed enforcement of nonewprivs for --noprofileLibravatar netblue302022-06-03
|
* --nettrace only available when running the sandbox as rootLibravatar netblue302022-06-03
|
* enforce nonewprivs for --noprofile optionLibravatar netblue302022-06-03
|
* Removed IDS feature from the default build. To enable it, use --enable-ids ↵Libravatar netblue302022-05-25
| | | | at compile time.
* --oom (#5122)Libravatar netblue302022-05-20
|
* man: typo fixes (#5084)Libravatar glitsj162022-03-31
|
* docs: mention capabilities(7) on --capsLibravatar Kelvin M. Klann2022-03-27
| | | | | | As hinted by @rusty-snake[1]. [1] https://github.com/netblue30/firejail/discussions/5064#discussioncomment-2417395
* Merge pull request #5052 from kmk3/docs-private-bugLibravatar netblue302022-03-24
|\ | | | | docs: mention inconsistent homedir bug involving --private=dir
| * docs: mention inconsistent homedir bug involving --private=dirLibravatar Kelvin M. Klann2022-03-14
| | | | | | | | | | | | | | | | | | And the workaround suggested by @smitsohu[1] and @rusty-snake[2]. Relates to #903 #5048. [1] https://github.com/netblue30/firejail/issues/903#issuecomment-946673346 [2] https://github.com/netblue30/firejail/discussions/5048#discussioncomment-2360034
* | Merge pull request #5043 from kmk3/docs-protocol-accLibravatar netblue302022-03-24
|\ \ | |/ |/| man: mention that the protocol command accumulates
| * man: mention that the protocol command accumulatesLibravatar Kelvin M. Klann2022-03-13
| | | | | | | | | | | | | | | | | | | | | | | | As mentioned by @rusty-snake[1]. This amends commit 39654d016 ("adding netlink to --protocol list (#4605)", 2022-01-21). See also commit 75073e0e4 ("man: mention that private-bin and private-etc are cumulative", 2022-01-22) and issue #4078. [1] https://github.com/netblue30/firejail/pull/5042/files#r825477891
* | fbuilder: update man pageLibravatar smitsohu2022-03-13
|/
* build option: support chromium/electron apps most of the timeLibravatar smitsohu2022-03-09
|
* more on --tabLibravatar netblue302022-02-20
|
* --tab: enable shell tab completionLibravatar netblue302022-02-20
|
* netlocker fixesLibravatar netblue302022-02-02
|
* more man page fixesLibravatar smitsohu2022-01-23
| | | | | | there are two build options, should clean up both follow-up to commit a6283fd7873a4f1dffb0730a968406d52545c73a
* Merge branch 'master' of https://github.com/netblue30/firejailLibravatar smitsohu2022-01-23
|\
| * netlink: revert man pagesLibravatar netblue302022-01-22
| |
* | build option: remove deprecated strace feature from manualLibravatar smitsohu2022-01-23
|/
* man: mention that private-bin and private-etc are cumulativeLibravatar Kelvin M. Klann2022-01-22
| | | | | | This amends commit ac6c8c038 ("fix #4078", 2022-01-21). Fixes #4078.
* adding netlink to --protocol list (#4605)Libravatar netblue2022-01-21
|
* nettrace fixesLibravatar netblue302022-01-18
|
* keep-fd option (#4845)Libravatar smitsohu2022-01-14
|
* Merge pull request #4827 from kmk3/noprinters-add-missingLibravatar netblue302022-01-08
|\ | | | | noprinters: add missing items & add to profile.template
| * noprinters: add missing items from new command checklistLibravatar Kelvin M. Klann2022-01-05
| | | | | | | | | | | | | | | | | | | | | | | | See CONTRIBUTING.md. The changes are based on what was done on commit 5a612029b ("rename noautopulse to keep-config-pulse", 2021-05-13) / PR #4278. This amends commit bd15e763e ("--noprinter option", 2021-10-20) and commit d9403dcdc ("small fix", 2021-10-20). Relates to #4607.
* | more on nettraceLibravatar netblue302022-01-07
|/
* nettraceLibravatar netblue302021-12-28
|
* Fix a typoLibravatar Tad2021-12-21
| | | | Signed-off-by: Tad <tad@spotco.us>
* updatesLibravatar netblue302021-12-19
|
* --ids-check/--ids-init documentationLibravatar netblue302021-11-13
|
* deterministic-shutdown optionLibravatar smitsohu2021-10-28
|
* man pagesLibravatar smitsohu2021-10-18
|
* cgroup: minor refactor, add v2 support, bugfixesLibravatar smitsohu2021-10-16
| | | | | | | | Adds minimal cgroupv2 support, and fixes an effective user id assertion in --join (instead of asserting effective user id of the user, drop privileges completely in a child process).
* trim excess whitespaceLibravatar a13460542021-09-25
|
* Revert "allow/deny help and man pages"Libravatar Kelvin M. Klann2021-09-02
| | | | | | | | | | | | | | | | | This reverts commit a11707ea273e5665047f8a7d9387ba07f08d72f6. The man pages currently direct users to use the aliases instead of the commands, which some users of firejail-git may end up doing. Example: https://github.com/netblue30/firejail/discussions/4496 So revert the man page changes as well to avoid confusion. Note: This is not a full revert. The commit in question also contains some string formatting fixes on src/firejail/usage.c (related to dbus and netmask), which are left intact. Relates to #4410.
* allow/deny help and man pagesLibravatar netblue302021-07-03
|
* Merge pull request #4340 from smitsohu/kcmpLibravatar smitsohu2021-06-26
|\ | | | | augment seccomp lists in firejail.config
| * seccomp man page updateLibravatar smitsohu2021-06-26
| | | | | | | | | | | | | | | | * move everything related to modification of the default seccomp filter from --seccomp to --seccomp= entry * update errno descriptions
| * augment seccomp lists in firejail.configLibravatar smitsohu2021-06-20
| |
* | Merge branch 'master' into kuesji/masterLibravatar Reiner Herrmann2021-06-21
|\ \
| * | tmpfs option enhancementsLibravatar smitsohu2021-06-21
| |/ | | | | | | | | | | | | | | | | | | | | | | * downgrade error to warning, smiliar to read-write option; this simplifies use of tmpfs option in general purpose profiles, for example we don't need to worry about links people put in their homedir * update manpage
| * Update manpage for whitelist2Libravatar rusty-snake2021-06-03
| |
* | grammar issues and fixing test cases for rlimitLibravatar kuesji koesnu2021-06-20
| |
* | added better parser for size stringsLibravatar kuesji koesnu2021-06-08
|/ | | | | | | | | | | | | this commit add support to size parsing for k,m,g suffix for numbers and applies this support to rlimit-as and rlimit-fsize arguments in both for commandline and profile parsing. supported suffix: - k for kilobytes - m for megabytes - g for gigabytes ( these values uses 1024 bases instead of 1000 )
* Refine appimage example in docsLibravatar slowpeek2021-05-26
|
* jailtest -> jailcheck (#4268)Libravatar netblue302021-05-18
|
* rename noautopulse to keep-config-pulseLibravatar Kelvin M. Klann2021-05-14
| | | | | | | | | | | | | | | | | | | | | | | | | Changes: * add the keep-config-pulse option * make noautopulse an alias for keep-config-pulse * deprecate the noautopulse option * misc: fix indentation of --keep-dev-shm on src/firejail/usage.c Even though noautopulse is not intended for hardening, it looks like it is, because it starts with "no", just like no3d, noroot, etc). In fact, it is the only "no" option that differs in such a way. And it has been accidentally misused as such before; see PR #4269 and commit e4beaeaa8 ("drop noautopulse from agetpkg"). So effectively rename it to keep-config-pulse in order to avoid confusion. This is similar to the keep-var-tmp and keep-dev-shm options, which are used to "leave a path alone", just like noautopulse. Note: The changes on this patch are based on the ones from commit 617ff40c9 ("add --noautopulse arg for complex pulse setups") / PR #1854. See #4269 for the discussion.
* Manpage fixesLibravatar rusty-snake2021-05-13
| | | | Subdirs for private-etc has been implemented since 6ebe8925.
* Merge pull request #4209 from ↵Libravatar netblue302021-05-04
|\ | | | | | | | | davidebeatrici/private-dev-input-support-and-noinput-option Map /dev/input with "--private-dev", add "--no-input" option to disable it
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-09-06 17:40:10 +0000