Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | fs_whitelist: no warning if macro resolution fails because of missing homedir | 2018-10-12 | |
| | |||
* | clean homedir pathname | 2018-10-12 | |
| | | | | fixes #2137 and similar issues with the /proc/self/mountinfo checks | ||
* | Minor fixes | 2018-10-11 | |
| | |||
* | Merge pull request #2172 from glitsj16/min | 2018-10-11 | |
|\ | | | | | New profile min | ||
| * | Update for min | 2018-10-11 | |
| | | |||
* | | Merge pull request #2171 from glitsj16/desktop | 2018-10-11 | |
|\ \ | | | | | | | New profile desktop (a.k.a. github-desktop) | ||
| * | | Update for desktop (a.k.a. github-desktop) | 2018-10-11 | |
| |/ | |||
* | | Merge pull request #2170 from glitsj16/easystroke | 2018-10-11 | |
|\ \ | | | | | | | New profile easystroke | ||
| * | | Update for easystroke | 2018-10-11 | |
| |/ | |||
* | | Merge pull request #2165 from glitsj16/authenticator | 2018-10-11 | |
|\ \ | | | | | | | Authenticator | ||
| * | | Update for authenticator | 2018-10-11 | |
| |/ | |||
* | | Merge pull request #2162 from glitsj16/QMediathekView | 2018-10-11 | |
|\ \ | | | | | | | new profile QMediathekView | ||
| * | | Update firecfg.config | 2018-10-11 | |
| |/ | |||
* / | allow overriding of disable-mnt with noblacklist - #2154 | 2018-10-11 | |
|/ | |||
* | clean /run/user directory | 2018-10-07 | |
| | |||
* | Merge pull request #2141 from crass/fix-appimage-hdr-calc | 2018-10-06 | |
|\ | | | | | Update appimage size calculation to newest code from libappimage. | ||
| * | Update appimage size calculation to newest code from libappimage. | 2018-10-05 | |
| | | |||
* | | Merge pull request #2138 from crass/fix-fj-proc-detect | 2018-10-06 | |
|\ \ | | | | | | | Fix incorrect --list and --tree output under certain circumstances | ||
| * | | Firejail should look for processes with names exactly named "firejail" to ↵ | 2018-10-05 | |
| |/ | | | | | | | avoid accounting for processes with a "firejail" prefix. | ||
* | | Merge pull request #2130 from crass/fix-2045 | 2018-10-04 | |
|\ \ | | | | | | | FIX-2045: Fix command name parsing for program paths with spaces. | ||
| * | | Fix command name parsing so that program paths with spaces do not cause the ↵ | 2018-10-01 | |
| |/ | | | | | | | wrong or no profile to be detected. | ||
* / | incomplete fix: whitelisting of symlinks to other home dirs | 2018-10-02 | |
|/ | | | | | | | | | belongs to previous commit 51eeef2059f00de117472046601e10a9fd958d51 short summary of the new behavior, which should catch a few corner cases better: - a non-existant file in another homedir (say homedirs are "/foo/user" and "/foo/user2") is silently ignored (previously a tmpfs was mounted on the users homedir, which was wrong) - a symlink pointing to an existing file in another homedir now works (but the link will be always dangling; you need --allusers to see this) - a symlink pointing back to the entire homedir now works as expected | ||
* | mount empty home if macro can't be whitelisted | 2018-10-01 | |
| | |||
* | fs_whitelist: reduce number of loop iterations | 2018-10-01 | |
| | |||
* | tiny memleaks | 2018-10-01 | |
| | |||
* | regression: fix whitelisting of symlinks to other home dirs, small improvements | 2018-10-01 | |
| | | | | | | | | handling of home dir paths is more explicit and rigorous now, which should make it easier to audit. Also this should come handy if one day fs_private() supports home directories outside /home rf. #2123 | ||
* | cleanup | 2018-09-30 | |
| | |||
* | fixed vim missing from firecfg.config | 2018-09-30 | |
| | |||
* | manpage cleanup | 2018-09-26 | |
| | |||
* | manpages: fix apparmor profile path | 2018-09-22 | |
| | |||
* | manpages: fix alignment | 2018-09-22 | |
| | |||
* | manpages: update AppArmor info | 2018-09-22 | |
| | |||
* | Fix check for nobody user | 2018-09-21 | |
| | | | | Fixes #2117 | ||
* | 0.9.56 released0.9.56 | 2018-09-18 | |
| | |||
* | error strings | 2018-09-17 | |
| | |||
* | fix --bandwidth, --cpu.print | 2018-09-15 | |
| | |||
* | exit if execl fails (arg_audit) | 2018-09-11 | |
| | |||
* | add switch to disable/enable private-cache | 2018-09-10 | |
| | |||
* | small rlimits adjustment | 2018-09-10 | |
| | |||
* | remove seccomp warning | 2018-09-09 | |
| | |||
* | Merge branch 'master' of http://github.com/netblue30/firejail | 2018-09-09 | |
|\ | |||
| * | set rlimits at later timepoint during sandbox setup | 2018-09-09 | |
| | | |||
* | | support for firetunnel utility | 2018-09-09 | |
|/ | |||
* | disallow overriding of global rlimits, tiny improvements | 2018-09-06 | |
| | |||
* | cleanup | 2018-09-05 | |
| | |||
* | improve safe_fd() function for better readability and auditability | 2018-09-05 | |
| | |||
* | fix --shell | 2018-09-03 | |
| | |||
* | minor cleanup | 2018-09-03 | |
| | |||
* | chroot problem (Debian) | 2018-09-03 | |
| | |||
* | Merges | 2018-09-03 | |
| |