aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAge
* Add a profile alias for Firefox NightlyLibravatar Tad2017-08-10
|
* --notv for #1446Libravatar startx20172017-08-10
|
* add /dev/dbv to private-dev listLibravatar startx20172017-08-09
|
* mergesLibravatar Fred-Barclay2017-08-07
|
* Seccomp: split @default into more meaningful smaller groupsLibravatar Topi Miettinen2017-08-06
|
* Seccomp: system call grouping and call numbersLibravatar Topi Miettinen2017-08-06
|
* private-lib fixesLibravatar netblue302017-08-06
|
* private-lib: fix crashLibravatar netblue302017-08-06
|
* prive-lib: integration with firetoolsLibravatar netblue302017-08-06
|
* bring in private-lib libraries for all private-bin programs. ↵Libravatar startx20172017-08-06
| | | | Example:firejail --private-lib --private-bin=bash,ls,find,pwd,grep
* fix copyright statementLibravatar netblue302017-08-05
|
* Improve library handling: use DT_RPATH/DT_RUNPATH to find more libsLibravatar Topi Miettinen2017-08-05
| | | | | | Helps in more complex cases like this: libpulse.so wants libpulsecommon-10.0.so, which is located in /usr/lib/x86_64-linux-gnu/pulseaudio. This path is specified with DT_RUNPATH.
* Merge pull request #1436 from SpotComms/gtLibravatar Fred Barclay2017-08-05
|\ | | | | Add a profile for Gnome Twitch
| * Add a profile for Gnome TwitchLibravatar Tad2017-08-05
| |
* | private-lib: preliminary support for directories in private-lib listLibravatar netblue302017-08-05
|/
* Update firecfg.config and add a wireshark-* aliasLibravatar Tad2017-08-04
|
* private-lib: add src/flddLibravatar netblue302017-08-04
|
* private-lib: support for /etc/firejail/firejail.configLibravatar netblue302017-08-04
|
* private-lib: bringing in private-lib list from command lineLibravatar netblue302017-08-04
|
* private-lib: split fldd as a separate applicationLibravatar netblue302017-08-03
|
* Add rambox profile from #1425Libravatar Fred Barclay2017-08-02
|
* get_mempolicy syscall was temporarily removed from the default seccomp list. ↵Libravatar netblue302017-08-02
| | | | | | It seems to break playing youtube videos on Firefox Nightly - #1414
* x11/xpra supportLibravatar netblue302017-08-01
|
* compile cleanupLibravatar netblue302017-08-01
|
* Fix tracing with private-libLibravatar Topi Miettinen2017-08-01
|
* Merge pull request #1415 from chiraag-nataraj/masterLibravatar netblue302017-07-31
|\ | | | | Tentative implementation for #1405
| * Ensure malloc was successfulLibravatar Chiraag Nataraj2017-07-30
| |
| * Remove debugging stuff, free start_child, exit properlyLibravatar Chiraag Nataraj2017-07-30
| |
| * Tentative implementation for #1405Libravatar Chiraag Nataraj2017-07-30
| |
* | Fixes for the private-lib and memory-deny-write-execute featuresLibravatar Topi Miettinen2017-07-30
| |
* | Memory-deny-write-execute featureLibravatar Topi Miettinen2017-07-30
| | | | | | | | Feature to block attempts to create writable and executable memory.
* | Improve loading of seccomp filterLibravatar Topi Miettinen2017-07-30
| | | | | | | | Also fixes a memory leak and double load.
* | Private /lib featureLibravatar Topi Miettinen2017-07-30
| |
* | mergesLibravatar netblue302017-07-30
|/
* Merge branch 'master' of https://github.com/netblue30/firejailLibravatar netblue302017-07-29
|\
| * Add a profile for armLibravatar Tad2017-07-29
| |
* | --shell=none fixLibravatar netblue302017-07-29
|/
* Merge pull request #1410 from topimiettinen/seccomp-printLibravatar netblue302017-07-29
|\ | | | | Improve seccomp printing
| * Improve seccomp printingLibravatar Topi Miettinen2017-07-28
| |
* | new profilesLibravatar netblue302017-07-29
| |
* | arp reworkLibravatar netblue302017-07-29
|/
* tentative fix for arp cahce pollution - #1406Libravatar netblue302017-07-27
|
* Fix typo for fnet moveif invocation on 2nd interface.Libravatar Christopher A. Oliver2017-07-27
|
* Improve cross build support by using configured compiler instead of make defaultLibravatar Helmut Grohne2017-07-26
| | | | https://bugs.debian.org/869707
* mergesLibravatar netblue302017-07-25
|
* Merge pull request #1402 from topimiettinen/nosuid-noexec-nodev-proc-sysLibravatar netblue302017-07-25
|\ | | | | /proc/sys can be nosuid,noexec,nodev
| * /proc/sys can be nosuid,noexec,nodevLibravatar Topi Miettinen2017-07-25
| |
* | Block some obsolete or unusual syscallsLibravatar Topi Miettinen2017-07-25
|/
* Merge pull request #1393 from topimiettinen/improve-mountingLibravatar netblue302017-07-20
|\ | | | | Improve mount handling
| * Improve mount handlingLibravatar Topi Miettinen2017-07-19
| | | | | | | | | | noexec/read-only/read-write handling: copy underlying FS flags before remounting. If the flags are already OK, don't remount unnecessarily.
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-20 20:31:28 +0000