| next change | 344:0f07897a82a9 |
| previous change | 286:49c07c9b821d |
Permissions: -rw-r--r--
|
281
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
quiet |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
|
|
286
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
noblacklist ~/.cache/pip/ |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
noblacklist ~/.cache/luarocks/ |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
noblacklist ~/.npm/ |
|
281
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
|
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
include /etc/firejail/disable-common.inc |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
include /etc/firejail/disable-programs.inc |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
include /etc/firejail/disable-passwdmgr.inc |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
|
|
286
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
whitelist ~/candolint |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
read-only ~/candolint |
|
281
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
|
|
286
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
mkdir ~/.cache/pip/ |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
mkdir ~/.cache/luarocks/ |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
mkdir ~/.npm/ |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
whitelist ~/.cache/pip/ |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
whitelist ~/.cache/luarocks/ |
|
286:49c07c9b821d
checker: looks like ${HOME} and ~ are the same thing for firejail, let's use ~
Anton Shestakov <av6@dwimlabs.net>
previous changes: 281:866cafced685
line |
diff
|
whitelist ~/.npm/ |
|
281
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
|
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
caps.drop all |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
netfilter |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
nonewprivs |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
nogroups |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
noroot |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
nosound |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
no3d |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
protocol inet,inet6,netlink |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
seccomp |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
shell none |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
|
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
dns 8.8.4.4 |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
dns 8.8.8.8 |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
|
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
private-dev |
|
281:866cafced685
checker: add check-in-firejail.sh
Anton Shestakov <av6@dwimlabs.net>
previous changes:
line |
diff
|
private-tmp |