-
Improve documentation, explain underlying concepts a bit better.
-
Hi Mickaël
First thanks for your marvelous job.
This is not an issue, more a feature request.
Second for being able to create an app firewall it would be interesting to be able to have a landloc…
-
[*statfs*(2)](https://man7.org/linux/man-pages/man2/statfs.2.html) lets callers probe for the existence of files, and retrieve information about the file system. We might want to restrict that.
* …
-
It appears that, when a `library` specifies some `ld-options`, these `ld-options` are passed to `gcc` when it's invoked to link some object files generated as part of some the pipeline to turn a `hsc`…
-
I am not sure which mailing list to best send this question to or which people to ask about this, so I am hoping for some advice from here.
We are trying to namespace the Linux Integrity Measuremen…
-
### Description
Using the default ani-cli.profile breaks [uosc](https://github.com/tomasklaen/uosc).
### Steps to Reproduce
_Steps to reproduce the behavior_
```sh
paru -S firejail mpv mp…
jtrv updated
4 months ago
-
Continue the security in depth approach by also preventing FS access with landlock
-
### systemd version the issue has been seen with
systemd 255.4-2
### Used distribution
arch
### Linux kernel version used
6.8.5-arch1-1
### CPU architectures issue was seen on
x86_64
### Compo…
-
### Description
Trying to use firejail to execute a login shell (for user "service").
Grateful for input on this.
### Steps to Reproduce
Firejail is set as shell.
> sudo grep serv…
-
`cptbox`, after #188, should logically implement multiprocess debugging support. This may one day permit the implementation of a `BASH` language, if we manage to limit what it can `exec`.