Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | merge --rlimit-as | startx2017 | 2017-10-15 |
| | |||
* | globbing - manpage | startx2017 | 2017-10-15 |
| | |||
* | apparmor | netblue30 | 2017-10-12 |
| | |||
* | Update manpages to use HTTPS links | Kunal Mehta | 2017-10-07 |
| | | | | | All of these websites support HTTPS, and nearly all of them redirect to it anyways. | ||
* | potential fix for mutt/gnupg issue #1585 | netblue30 | 2017-10-02 |
| | |||
* | Update man page since --private-dev allows disc devices like cdrom | Fred-Barclay | 2017-09-19 |
| | |||
* | spelling | netblue30 | 2017-09-17 |
| | |||
* | profile build tool | netblue30 | 2017-09-17 |
| | |||
* | --writable-run-user man page | netblue30 | 2017-09-14 |
| | |||
* | --writable-run-user, solving ssh/gnupg authentication problems for smarcards | netblue30 | 2017-09-14 |
| | |||
* | fix manpage for --output | netblue30 | 2017-09-12 |
| | |||
* | --profile.print option | netblue30 | 2017-09-02 |
| | |||
* | man page | netblue30 | 2017-08-23 |
| | |||
* | cleanup | netblue30 | 2017-08-23 |
| | |||
* | Feature: switch/config option to block secondary architectures | Topi Miettinen | 2017-08-19 |
| | | | | | | | | | Add a feature for a new (opt-in) command line switch and config file option to block secondary architectures entirely. Also block changing Linux execution domain with personality() system call for the primary architecture. Closes #1479 | ||
* | Postpone installation of seccomp filters just before execve | Topi Miettinen | 2017-08-19 |
| | |||
* | Minor manpage correction | Reiner Herrmann | 2017-08-18 |
| | |||
* | memory-deny-write-execute testing | netblue30 | 2017-08-18 |
| | |||
* | private-lib | netblue30 | 2017-08-17 |
| | |||
* | memory-deny-write-execute | netblue30 | 2017-08-17 |
| | |||
* | --net=none documentation | netblue30 | 2017-08-17 |
| | |||
* | update RELNOTES/Readme.md/--help; man page update for #1439 | startx2017 | 2017-08-14 |
| | |||
* | Allow any syscall to be blacklisted (#1447) | Topi Miettinen | 2017-08-13 |
| | | | | | | | Allow any syscall to be blacklisted with aid of LD_PRELOAD library, libpostexecseccomp.so. Closes: #1447 | ||
* | modif: --output split in two commands, --output and --output-stderr; fix for ↵ | netblue30 | 2017-08-13 |
| | | | | #1458 | ||
* | added --nodvd | netblue30 | 2017-08-12 |
| | |||
* | typo | Reiner Herrmann | 2017-08-10 |
| | |||
* | --notv for #1446 | startx2017 | 2017-08-10 |
| | |||
* | Seccomp: split @default into more meaningful smaller groups | Topi Miettinen | 2017-08-06 |
| | |||
* | Seccomp: system call grouping and call numbers | Topi Miettinen | 2017-08-06 |
| | |||
* | get_mempolicy syscall was temporarily removed from the default seccomp list. ↵ | netblue30 | 2017-08-02 |
| | | | | | | It seems to break playing youtube videos on Firefox Nightly - #1414 | ||
* | Memory-deny-write-execute feature | Topi Miettinen | 2017-07-30 |
| | | | | Feature to block attempts to create writable and executable memory. | ||
* | Private /lib feature | Topi Miettinen | 2017-07-30 |
| | |||
* | merges | netblue30 | 2017-07-25 |
| | |||
* | support for Xephyr screen size | netblue30 | 2017-07-19 |
| | |||
* | per-profile disable-mnt | netblue30 | 2017-07-04 |
| | |||
* | merges | netblue30 | 2017-06-22 |
| | |||
* | novideo fixes | netblue30 | 2017-06-11 |
| | |||
* | fix manpage: removed --seccomp.errno, currently supported by the regular ↵ | startx2017 | 2017-05-26 |
| | | | | --seccomp=command | ||
* | Remove trailing whitespace from src/ | Fred Barclay | 2017-05-24 |
| | |||
* | --novideo option | Fred Barclay | 2017-05-22 |
| | | | | | Still a work in progress. Code needs cleanup and improvement, but it does block /dev/video* in all of my tests so far. | ||
* | bringing back firecfg --fix | netblue30 | 2017-05-19 |
| | |||
* | support /dev/video* in private-dev, bringing back private-dev in firefox profile | netblue30 | 2017-05-19 |
| | |||
* | merged 0.9.46-bugfixes on mainline following 0.9.46 release | startx2017 | 2017-05-17 |
| | |||
* | --fix-sound support in firecfg | netblue30 | 2017-05-03 |
| | |||
* | allow PulseAudio sockets in --private-tmp | netblue30 | 2017-04-30 |
| | |||
* | man pages | netblue30 | 2017-04-28 |
| | |||
* | set desktop files with firecfg by default (former --fix option) | netblue30 | 2017-04-22 |
| | |||
* | man: update output of --trace command | Reiner Herrmann | 2017-04-22 |
| | |||
* | Drop removed --overlay-path from manpage. | Reiner Herrmann | 2017-04-10 |
| | | | | Found by GSR (https://bugs.debian.org/859979) | ||
* | seccomp and brave profile merges | netblue30 | 2017-04-03 |
| |