Page MenuHomeSolus
Create Task
Maniphest T4

Firejail
Closed, ResolvedPublic
Actions

Description

Firejail is a SUID sandbox program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces, seccomp-bpf and Linux capabilities.

https://github.com/netblue30/firejail

Related Objects
Search...

StatusSubtypeAssignedTask
 ResolvedikeyT4 Firejail
 ResolvedikeyT660 firejail

Event Timeline

tanasinn created this task.Aug 3 2016, 12:04 PM
JoshStrobl triaged this task as Normal priority.Aug 3 2016, 12:06 PM
JoshStrobl added a subscriber: JoshStrobl.

Questionable whether we really need this in Solus or not. You shouldn't be running untrusted applications on Solus in the first place and we wouldn't be providing via the repo "untrusted applications".

JoshStrobl renamed this task from Package Request: Firejail to Firejail.Aug 3 2016, 12:07 PM
tanasinn added a comment.Aug 3 2016, 12:12 PM

I was thinking more of being able to run e.g. the browser in Firejail (not as a default of course) to limit the impact of browser exploits etc.

JoshStrobl added a comment.Aug 3 2016, 12:27 PM
In T4#69, @tanasinn wrote:

I was thinking more of being able to run e.g. the browser in Firejail (not as a default of course) to limit the impact of browser exploits etc.

Browser exploits from what exactly? Chrome does per-process isolation and sandboxing and any "exploits" would be CVEs, which already get addressed.

tanasinn added a comment.Aug 3 2016, 3:36 PM

It would act more as a protection against zero-day vulnerabilities, and would have e.g. helped against this Firefox bug due to only letting Firefox access a few select folders.

Here is another example:
https://l3net.wordpress.com/2016/01/20/firejail-target-practice-cve-2016-0728/

But yeah, I guess the general interest in this package would be pretty low so those interested can just compile it themselves.

ikey added a subscriber: ikey.Aug 3 2016, 3:58 PM

We released that Firefox update within moments of the Firefox release going public on Mozila's infra:
https://git.solus-project.com/packages/firefox/tag/?h=firefox-39.0.3-23

DataDrake created subtask T660: firejail.Sep 15 2016, 2:36 AM
DataDrake closed this task as Wontfix.Oct 28 2016, 7:29 PM
DataDrake claimed this task.
DataDrake closed subtask T660: firejail as Wontfix.
baimafeima added a subscriber: baimafeima.Nov 24 2016, 5:49 AM
JoshStrobl merged a task: T1724: Firetools GUI for Firejail security sandbox.Nov 24 2016, 5:52 AM
ikey reopened subtask T660: firejail as Open.Nov 27 2016, 6:35 PM
ikey changed the task status from Wontfix to Resolved.Nov 27 2016, 7:15 PM
ikey claimed this task.
ikey closed subtask T660: firejail as Resolved.
ikey added a subscriber: DataDrake.

Commandeered and resolved.

DataDrake mentioned this in R2210:c48e089f22c3: Updated to 410.78.Nov 20 2018, 5:23 PM
aleksvor mentioned this in D9150: Update warzone2100 to 3.4.0.Jun 27 2020, 8:08 AM
JoshStrobl mentioned this in R3153:c069c65b263c: Update warzone2100 to 3.4.0.Jul 1 2020, 8:16 AM
Copyright © 2015-2021 Solus Project. The Solus logo is Copyright © 2016-2021 Solus Project. All Rights Reserved.