[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

You do use Firejail, don't you?

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /g/ - Technology
  3. You do use Firejail, don't you?
Thread replies: 19
Thread images: 3

Anonymous
2017-09-08 04:35:01 Post No. 62317309
[Report] Image search: [Google]
File: 1482664377485.png (10KB, 480x369px) Image search: [Google]
1482664377485.png
10KB, 480x369px
Anonymous 2017-09-08 04:35:01 Post No. 62317309 [Report]
You do use Firejail, don't you?
>>
Anonymous 2017-09-08 04:37:34 Post No.62317342
[Report]
Anonymous 2017-09-08 04:37:34 Post No.62317342 [Report]
>>62317309
How is that compared to iptables?
>>
Anonymous 2017-09-08 04:39:50 Post No.62317367
[Report]
Anonymous 2017-09-08 04:39:50 Post No.62317367 [Report]
Yes, definitely when using Linux.

t. OpenBSD user
>>
Anonymous 2017-09-08 04:45:58 Post No.62317430
[Report]
Anonymous 2017-09-08 04:45:58 Post No.62317430 [Report]
>>62317342
Not comparable at all since it performs a different function. It would be closer to AppArmor in functionality but writing rules for Firejail is much simpler while still enhancing security and allowing you to "hide" personal files from applications.
>>
Anonymous 2017-09-08 05:33:33 Post No.62317953
[Report]
Anonymous 2017-09-08 05:33:33 Post No.62317953 [Report]
>>62317309
No, I run firefox as root
>>
Anonymous 2017-09-08 05:34:11 Post No.62317962
[Report]
Anonymous 2017-09-08 05:34:11 Post No.62317962 [Report]
It's developed by 2 people and both use anonymous accounts. I've never heard anyone competent recommending it. No distro ships it by default. Lack if trust is my reason not to.
>>
Anonymous 2017-09-08 05:56:58 Post No.62318238
[Report]
Anonymous 2017-09-08 05:56:58 Post No.62318238 [Report]
>>62317309
Yes. All my browser allowed to run with it.
>>
Anonymous 2017-09-08 06:02:44 Post No.62318318
[Report]
Anonymous 2017-09-08 06:02:44 Post No.62318318 [Report]
>>62317962
It's open source so why shouldn't you trust it just because the developer is anonymous?
https://github.com/netblue30/firejail
>>
Anonymous 2017-09-08 07:09:47 Post No.62319193
[Report]
Anonymous 2017-09-08 07:09:47 Post No.62319193 [Report]
>>62318318
It's written in C so most likely full of vulnerabilities, how can I trust it if it hasn't been audited?
>>
Anonymous 2017-09-08 07:17:00 Post No.62319308
[Report]
Anonymous 2017-09-08 07:17:00 Post No.62319308 [Report]
>>62317342
kys
>>
Anonymous 2017-09-08 07:25:09 Post No.62319421
[Report]
Anonymous 2017-09-08 07:25:09 Post No.62319421 [Report]
>>62317309
No. I use Tomoyo. I hope that's ok.
>>
Anonymous 2017-09-08 07:31:37 Post No.62319492
[Report] Image search: [Google]
Anonymous 2017-09-08 07:31:37 Post No.62319492 [Report]
File: tomoyo.png (52KB, 111x150px) Image search: [Google]
tomoyo.png
52KB, 111x150px
>>62319421
>>
Anonymous 2017-09-08 07:34:32 Post No.62319526
[Report]
Anonymous 2017-09-08 07:34:32 Post No.62319526 [Report]
>>62319193
This is why we can't have nice things.
>>
Anonymous 2017-09-08 08:38:30 Post No.62320439
[Report]
Anonymous 2017-09-08 08:38:30 Post No.62320439 [Report]
>>62319193
It has some audit year ago but haven't managed to find public results
>>
Anonymous 2017-09-08 08:47:48 Post No.62320585
[Report]
Anonymous 2017-09-08 08:47:48 Post No.62320585 [Report]
>>62317309
is this a chroot for dumb people that come from ubuntu?
>>
Anonymous 2017-09-08 08:54:01 Post No.62320670
[Report]
Anonymous 2017-09-08 08:54:01 Post No.62320670 [Report]
>>62317367
does openbsd have something equivalent
>>
Anonymous 2017-09-08 09:47:48 Post No.62321452
[Report]
Anonymous 2017-09-08 09:47:48 Post No.62321452 [Report]
>>62320585
No, it's different from chroot (change root). A chroot jail just changes root directory. For example if you set /home/faggot/chroot as your chroot jail then anything outside of that location will simply not "exist" since the system will think that it's the root directory and normally it won't go past that (now if you have root privileges this can be bypassed and therefore you shouldn't bother with chroot if you're running untrusted programs with root privileges).

With Firejail your root directory is still the same as usual but it tries to reduce attack surface by restricting access to certain resources as well as removing unnecessary privileges.

https://wiki.archlinux.org/index.php/Firejail
>>
Anonymous 2017-09-08 10:22:22 Post No.62321941
[Report] Image search: [Google]
Anonymous 2017-09-08 10:22:22 Post No.62321941 [Report]
File: 3a5.jpg (23KB, 480x320px) Image search: [Google]
3a5.jpg
23KB, 480x320px
>>62317953
>>
Anonymous 2017-09-08 10:52:53 Post No.62322420
[Report]
Anonymous 2017-09-08 10:52:53 Post No.62322420 [Report]
>>62317309
Only when using Evince.
And, even then, I still don't feel safe.
Thread posts: 19
Thread images: 3
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.