Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | Memory-deny-write-execute feature | Topi Miettinen | 2017-07-30 |
| | | | | Feature to block attempts to create writable and executable memory. | ||
* | Improve loading of seccomp filter | Topi Miettinen | 2017-07-30 |
| | | | | Also fixes a memory leak and double load. | ||
* | Private /lib feature | Topi Miettinen | 2017-07-30 |
| | |||
* | merges | netblue30 | 2017-07-30 |
| | |||
* | Merge branch 'master' of https://github.com/netblue30/firejail | netblue30 | 2017-07-29 |
|\ | |||
| * | Add a profile for arm | Tad | 2017-07-29 |
| | | |||
* | | --shell=none fix | netblue30 | 2017-07-29 |
|/ | |||
* | Merge pull request #1410 from topimiettinen/seccomp-print | netblue30 | 2017-07-29 |
|\ | | | | | Improve seccomp printing | ||
| * | Improve seccomp printing | Topi Miettinen | 2017-07-28 |
| | | |||
* | | new profiles | netblue30 | 2017-07-29 |
| | | |||
* | | arp rework | netblue30 | 2017-07-29 |
|/ | |||
* | tentative fix for arp cahce pollution - #1406 | netblue30 | 2017-07-27 |
| | |||
* | Fix typo for fnet moveif invocation on 2nd interface. | Christopher A. Oliver | 2017-07-27 |
| | |||
* | Improve cross build support by using configured compiler instead of make default | Helmut Grohne | 2017-07-26 |
| | | | | https://bugs.debian.org/869707 | ||
* | merges | netblue30 | 2017-07-25 |
| | |||
* | Merge pull request #1402 from topimiettinen/nosuid-noexec-nodev-proc-sys | netblue30 | 2017-07-25 |
|\ | | | | | /proc/sys can be nosuid,noexec,nodev | ||
| * | /proc/sys can be nosuid,noexec,nodev | Topi Miettinen | 2017-07-25 |
| | | |||
* | | Block some obsolete or unusual syscalls | Topi Miettinen | 2017-07-25 |
|/ | |||
* | Merge pull request #1393 from topimiettinen/improve-mounting | netblue30 | 2017-07-20 |
|\ | | | | | Improve mount handling | ||
| * | Improve mount handling | Topi Miettinen | 2017-07-19 |
| | | | | | | | | | | noexec/read-only/read-write handling: copy underlying FS flags before remounting. If the flags are already OK, don't remount unnecessarily. | ||
* | | Fix typo usr->user | Topi Miettinen | 2017-07-19 |
|/ | | | | | This typo may have prevented blacklists of /run/user/{uid}/gnupg and /run/user/{uid}/systemd from working. | ||
* | support for Xephyr screen size | netblue30 | 2017-07-19 |
| | |||
* | xvfb fixes | netblue30 | 2017-07-17 |
| | |||
* | Fix #1383 | Tad | 2017-07-16 |
| | |||
* | Update after merge #1374 | Fred-Barclay | 2017-07-13 |
| | | | | | This introduces blacklist ~/.java to disable-programs.inc, so it may break some existing profiles that depend on it. | ||
* | Cleanup from merges #1369 and #1373 | Fred-Barclay | 2017-07-13 |
| | |||
* | fix xpra broken earlier | netblue30 | 2017-07-12 |
| | |||
* | cleanup | netblue30 | 2017-07-12 |
| | |||
* | fix #1371; rework seccomp_filter_drop() function | startx2017 | 2017-07-11 |
| | |||
* | fix discretionary access control for sandboxes running as root with --noprofile | netblue30 | 2017-07-08 |
| | |||
* | fixing the previous fix | startx2017 | 2017-07-07 |
| | |||
* | fix firemon --name | startx2017 | 2017-07-07 |
| | |||
* | run --netstats on 1s interval; caching user name. | startx2017 | 2017-07-07 |
| | |||
* | shorter firejail name in --top and --netstats | startx2017 | 2017-07-07 |
| | |||
* | bugfix: fix --allusers when running as root | startx2017 | 2017-07-07 |
| | |||
* | per-profile disable-mnt | netblue30 | 2017-07-04 |
| | |||
* | Merge pull request #1358 from jmullee/master | netblue30 | 2017-06-30 |
|\ | | | | | fix empty-string assignment | ||
| * | fix empty-string assignment | John Mullee | 2017-06-29 |
| | | |||
* | | Merge pull request #1357 from BafDyce/liferea | netblue30 | 2017-06-30 |
|\ \ | | | | | | | Add profile for Liferea | ||
| * | | Add profile for Liferea | Fabian Würfl | 2017-06-29 |
| |/ | |||
* / | Fix race condition when setting up /run/firejail files (#1013) | Fabian Würfl | 2017-06-30 |
|/ | |||
* | geary profile | startx2017 | 2017-06-29 |
| | |||
* | KWrite profile | startx2017 | 2017-06-29 |
| | |||
* | More fixes for #1349 and 1acfd077b124cbfc8ed257f0c0aacf4f4cbaba38 | Tad | 2017-06-27 |
| | |||
* | fixed profiles missing in firecfg.config (#1349) | netblue30 | 2017-06-27 |
| | |||
* | firemon: only use col/row when values are valid | Reiner Herrmann | 2017-06-25 |
| | | | | | In case stdin (or stdout/stderr) is not attached to a tty, the ioctl can't determine the actual sizes, so keep using fallback values. | ||
* | firemon: use macro instead of number | Reiner Herrmann | 2017-06-25 |
| | |||
* | merges | netblue30 | 2017-06-22 |
| | |||
* | Fix typo in usage example command | Fabian Würfl | 2017-06-21 |
| | |||
* | handbrake fixes | netblue30 | 2017-06-19 |
| |