aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAge
* Add brave redirect profiles (#3088)Libravatar glitsj162019-12-18
| | | | | | | | | | | | | | * Add more brave redirects to firecfg.config These redirects are found on Debian/Ubuntu when enabling the official Brave repositories cfr. https://brave-browser.readthedocs.io/en/latest/installing-brave.html#linux * Create brave-browser-beta.profile * Create brave-browser-dev.profile * Create brave-browser-nightly.profile * Create brave-browser-stable.profile
* Fix ordering of 'RESTRICTED SHELL'Libravatar glitsj162019-12-15
|
* postmortem: playing aroundLibravatar netblue302019-12-15
|
* small fixLibravatar netblue302019-12-15
|
* Fix --appimage on linux 5.4.x kernelLibravatar glitsj162019-12-14
| | | Fixes #3068.
* little thingsLibravatar smitsohu2019-12-11
|
* cleanupLibravatar smitsohu2019-12-03
|
* fix stack alignmentLibravatar smitsohu2019-11-30
| | | | apparently on x86 and on other platforms like aarch64 a 16 byte aligned stack is expected todo: replace this with a generic check
* libreoffice aliasenLibravatar rusty-snake2019-11-28
|
* add private-tmp debug messageLibravatar smitsohu2019-11-28
|
* mask more private options runtime directories, just to be sureLibravatar smitsohu2019-11-28
|
* fix interaction between private options and allusers optionLibravatar smitsohu2019-11-28
|
* Add gist-paste to firecfg.configLibravatar glitsj162019-11-25
|
* Add new profile: gist (#3061)Libravatar glitsj162019-11-25
| | | | | | | | | | | | * Create gist.profile * Add gist config to disable-programs.inc * Add gist to firecfg.config * Update RELNOTES * Update README.md
* Add new profile: unf (#3060)Libravatar glitsj162019-11-24
| | | | | | * Create unf.profile * Add unf to firecfg.config
* Add new profile: gmpc (#3059)Libravatar glitsj162019-11-24
| | | | | | | | * Create gmpc.profile * Add gmpc config to disable-programs.inc * Add gmpc to firecfg.config
* Add new profile: drawio (#3058)Libravatar glitsj162019-11-24
| | | | | | | | * Create drawio.profile * Add drawio config to disable-programs.inc * Add drawio to firecfg.config
* Add new profile: ddgtk (#3057)Libravatar glitsj162019-11-24
| | | | | | * Create ddgtk.profile * Add ddgtk to firecfg.config
* Add new profile: cameramonitor (#3056)Libravatar glitsj162019-11-24
| | | | | | * Create cameramonitor.profile * Add cameramonitor to firecfg.config
* New profile: audio-recorder (#3055)Libravatar glitsj162019-11-24
| | | | | | * Create audio-recorder.profile * Add audio-recorder to firecfg.config
* mergesLibravatar Tad2019-11-24
|
* Add new electron-mail profile (#3053)Libravatar glitsj162019-11-23
| | | | | | | | * Create electron-mail.profile * Add electron-mail to disable-programs.inc * Add electron-mail to firecfg.config
* improving remount performanceLibravatar smitsohu2019-11-19
|
* fix previous commitLibravatar netblue302019-11-15
|
* enable apparmor profile from firecfgLibravatar netblue302019-11-15
|
* fixing the fixLibravatar smitsohu2019-11-14
| | | | | get previous commit acbf707889ae241bfd476f5371df4599103b6606 in line with treatment of other directories in /run/firejail/mnt
* blacklist private-home runtime directoryLibravatar smitsohu2019-11-14
| | | | | as far as possible avoid creating locations in the file system that are both writable and executable
* simplify private option ownership checks and make them more consistentLibravatar smitsohu2019-11-14
| | | | | | allowing private and home directory to be owned by different users if the home directory is inside /home was thought to add flexibility, but the scenario is maybe a bit too exotic, and ignoring it paves the way for a simplification
* Merge pull request #3037 from vutny/fix-3029Libravatar netblue302019-11-13
|\ | | | | Resolve #3029: drop outdated Skype profile
| * Resolve #3029: drop outdated Skype profileLibravatar Denys Havrysh2019-11-12
| |
* | private-options: add homedir ownership checkLibravatar smitsohu2019-11-12
| |
* | private-cache warning messages - #2968Libravatar smitsohu2019-11-12
| |
* | add HAS_NET conditionalLibravatar smitsohu2019-11-11
|/
* add kfind profileLibravatar smitsohu2019-11-09
|
* Disabled --overlay for kernels 4.219 and newer until we can bring a fix inLibravatar netblue302019-11-08
|
* dns fixesLibravatar netblue302019-10-31
|
* cleanup after scan-buildLibravatar netblue302019-10-31
|
* remove scan-build warningLibravatar netblue302019-10-31
|
* Rework waterfox profile (#3014)Libravatar rusty-snake2019-10-28
| | | closes #3013
* fixup! Add amuled profile (redirect from amule)Libravatar rusty-snake2019-10-27
|
* Update main.cLibravatar Manuel Dipolt2019-10-25
| | | Eight byte stack alignment is a requirement of the Procedure Call Standard for the ARM Architecture [AAPCS]. This specifies that functions must maintain an eight-byte aligned stack address (for example: 0x00, 0x08, 0x10, 0x18, 0x20) on all external interfaces
* Fix #2995Libravatar rusty-snake2019-10-16
|
* Profiles: add signal-cli profile (#3002)Libravatar Timo Hardebusch2019-10-15
| | | | | | | | * Profiles: add signal-cli profile Clarification regarding Java * Added suggestions from code review
* blacklist runtime profile directoryLibravatar smitsohu2019-10-14
|
* chroot error message typoLibravatar smitsohu2019-10-13
|
* postpone procfs mount until after chroot callLibravatar smitsohu2019-10-13
| | | | issue #2301
* fix chroot with mounted resolv.confLibravatar smitsohu2019-10-13
|
* x11 hardeningLibravatar smitsohu2019-10-13
|
* kalgebra.profile, kalgebramobile.profileLibravatar rusty-snake2019-10-12
|
* x11 xorg: blacklist non-default Xauthority fileLibravatar smitsohu2019-10-08
| | | fixes #1652
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-21 03:50:35 +0000