Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | --writable-run-user man page | 2017-09-14 | |
| | |||
* | --writable-run-user, solving ssh/gnupg authentication problems for smarcards | 2017-09-14 | |
| | |||
* | fix manpage for --output | 2017-09-12 | |
| | |||
* | --profile.print option | 2017-09-02 | |
| | |||
* | man page | 2017-08-23 | |
| | |||
* | cleanup | 2017-08-23 | |
| | |||
* | Feature: switch/config option to block secondary architectures | 2017-08-19 | |
| | | | | | | | | | Add a feature for a new (opt-in) command line switch and config file option to block secondary architectures entirely. Also block changing Linux execution domain with personality() system call for the primary architecture. Closes #1479 | ||
* | Postpone installation of seccomp filters just before execve | 2017-08-19 | |
| | |||
* | Minor manpage correction | 2017-08-18 | |
| | |||
* | memory-deny-write-execute testing | 2017-08-18 | |
| | |||
* | private-lib | 2017-08-17 | |
| | |||
* | memory-deny-write-execute | 2017-08-17 | |
| | |||
* | --net=none documentation | 2017-08-17 | |
| | |||
* | update RELNOTES/Readme.md/--help; man page update for #1439 | 2017-08-14 | |
| | |||
* | Allow any syscall to be blacklisted (#1447) | 2017-08-13 | |
| | | | | | | | Allow any syscall to be blacklisted with aid of LD_PRELOAD library, libpostexecseccomp.so. Closes: #1447 | ||
* | modif: --output split in two commands, --output and --output-stderr; fix for ↵ | 2017-08-13 | |
| | | | | #1458 | ||
* | added --nodvd | 2017-08-12 | |
| | |||
* | typo | 2017-08-10 | |
| | |||
* | --notv for #1446 | 2017-08-10 | |
| | |||
* | Seccomp: split @default into more meaningful smaller groups | 2017-08-06 | |
| | |||
* | Seccomp: system call grouping and call numbers | 2017-08-06 | |
| | |||
* | get_mempolicy syscall was temporarily removed from the default seccomp list. ↵ | 2017-08-02 | |
| | | | | | | It seems to break playing youtube videos on Firefox Nightly - #1414 | ||
* | Memory-deny-write-execute feature | 2017-07-30 | |
| | | | | Feature to block attempts to create writable and executable memory. | ||
* | Private /lib feature | 2017-07-30 | |
| | |||
* | merges | 2017-07-25 | |
| | |||
* | support for Xephyr screen size | 2017-07-19 | |
| | |||
* | per-profile disable-mnt | 2017-07-04 | |
| | |||
* | merges | 2017-06-22 | |
| | |||
* | novideo fixes | 2017-06-11 | |
| | |||
* | fix manpage: removed --seccomp.errno, currently supported by the regular ↵ | 2017-05-26 | |
| | | | | --seccomp=command | ||
* | Remove trailing whitespace from src/ | 2017-05-24 | |
| | |||
* | --novideo option | 2017-05-22 | |
| | | | | | Still a work in progress. Code needs cleanup and improvement, but it does block /dev/video* in all of my tests so far. | ||
* | bringing back firecfg --fix | 2017-05-19 | |
| | |||
* | support /dev/video* in private-dev, bringing back private-dev in firefox profile | 2017-05-19 | |
| | |||
* | merged 0.9.46-bugfixes on mainline following 0.9.46 release | 2017-05-17 | |
| | |||
* | --fix-sound support in firecfg | 2017-05-03 | |
| | |||
* | allow PulseAudio sockets in --private-tmp | 2017-04-30 | |
| | |||
* | man pages | 2017-04-28 | |
| | |||
* | set desktop files with firecfg by default (former --fix option) | 2017-04-22 | |
| | |||
* | man: update output of --trace command | 2017-04-22 | |
| | |||
* | Drop removed --overlay-path from manpage. | 2017-04-10 | |
| | | | | Found by GSR (https://bugs.debian.org/859979) | ||
* | seccomp and brave profile merges | 2017-04-03 | |
| | |||
* | --nowhitelist | 2017-03-09 | |
| | |||
* | allow /tmp in mkdir and mkfile profile commands | 2017-03-07 | |
| | |||
* | fix and document firemon --nowrap | 2017-03-04 | |
| | |||
* | xvfb X11 server support (--x11=xvfb) | 2017-03-03 | |
| | |||
* | adding macro for include command in profile files | 2017-02-09 | |
| | |||
* | --git-install/--git-uninstall | 2017-02-05 | |
| | |||
* | --writable-var-log | 2017-01-30 | |
| | |||
* | --hosts-file option | 2017-01-22 | |
| |