sys-apps / firejail-lts

Security sandbox for any type of processes; LTS version

Official package sites : https://firejail.wordpress.com/ ·

Firejail is a SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf. It allows a process and all its descendants to have their own private view of the globally shared kernel resources, such as the network stack, process table, mount table. This is long term support branch of firejail. For the regular version see sys-apps/firejail. The code base is approximately 40% smaller than the regular version, providing a smaller attack surface for the SUID executable.

v0.9.56.2-r1 :: 0 :: gentoo

Modified
License
GPL-2
Keywords
~amd64
USE flags
apparmor globalcfg network seccomp suid test userns whitelist

v0.9.56.2 :: 0 :: gentoo

Modified
License
GPL-2
Keywords
~amd64
USE flags
apparmor globalcfg network seccomp suid test userns whitelist

v0.9.38.12 :: 0 :: gentoo

Modified
License
GPL-2
Keywords
~amd64
USE flags
seccomp

v0.9.38.10 :: 0 :: gentoo

Modified
License
GPL-2
Keywords
amd64
USE flags
seccomp

General

apparmor
Enable support for custom AppArmor profiles
globalcfg
Enable global config file
network
Enable networking features
seccomp
Enable system call filtering
suid
Enable setuid root program, with potential security risks
test
Enable dependencies and/or preparations necessary to run tests (usually controlled by FEATURES=test but can be toggled independently)
userns
Enable attaching a new user namespace to a sandbox (--noroot option)
whitelist
Enable file and directory whitelisting

dev-tcltk / expect : tool for automating interactive applications

sys-apps / firejail : Security sandbox for any type of processes

sys-libs / libapparmor : Library to support AppArmor userspace utilities

sys-apps / firejail : Security sandbox for any type of processes

sys-libs / libapparmor : Library to support AppArmor userspace utilities

sys-apps / firejail : Security sandbox for any type of processes

687108
<sys-apps/firejail-0.9.60-r1 <sys-apps/firejail-lts-0.9.56.2-r1: unauthorized disclosure of information (shutdown.c)
687612
<sys-apps/firejail-0.9.60-r1 <sys-apps/firejail-lts-0.9.56.2-r1: unauthorized disclosure of information (runtime seccomp files)
Repository mirror & CI · gentoo
Merge updates from master
Dennis Lamm · gentoo
sys-apps/firejail-lts: [QA] fix compressed man pages
Signed-off-by: Dennis Lamm <expeditioneer@gentoo.org> Package-Manager: Portage-2.3.69, Repoman-2.3.16
Repository mirror & CI · gentoo
Merge updates from master
Dennis Lamm · gentoo
sys-apps/firejail-lts: bump 0.9.56.2
Signed-off-by: Dennis Lamm <expeditioneer@gentoo.org> Package-Manager: Portage-2.3.69, Repoman-2.3.16
Amadeusz Żołnowski · gentoo
sys-apps/firejail-lts: Bump version
Package-Manager: Portage-2.3.24, Repoman-2.3.6
Robin H. Johnson · gentoo
Drop $Id$ per council decision in bug #611234.
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
Amadeusz Żołnowski · gentoo
sys-apps/firejail-lts: Remove vulnerable version
Gentoo-Bug: 607382 Package-Manager: Portage-2.3.3, Repoman-2.3.1
Agostino Sarubbo · gentoo
sys-apps/firejail-lts: amd64 stable wrt bug #607382
Package-Manager: portage-2.3.0 RepoMan-Options: --include-arches="amd64" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
Amadeusz Żołnowski · gentoo
sys-apps/firejail-lts: Install docs in directory with full version
Don't install license file. Package-Manager: Portage-2.3.3, Repoman-2.3.1
Amadeusz Żołnowski · gentoo
sys-apps/firejail-lts: Bump version
Gentoo-Bug: 607382 Package-Manager: Portage-2.3.3, Repoman-2.3.1
T. Malfatti · gentoo
media-libs/portaudio: Version bump
Amadeusz Żołnowski · gentoo
sys-apps/firejail-lts: Remove vulnerable version
Gentoo-Bug: 604758 Package-Manager: Portage-2.3.3, Repoman-2.3.1
Agostino Sarubbo · gentoo
sys-apps/firejail-lts: amd64 stable wrt bug #604758
Package-Manager: portage-2.3.0 RepoMan-Options: --include-arches="amd64" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
Amadeusz Żołnowski · gentoo
sys-apps/firejail-lts: Bump version
Gentoo-Bug: 604758 Package-Manager: Portage-2.3.3, Repoman-2.3.1
Tobias Klausmann · gentoo
sys-apps/firejail-lts-0.9.38.6-r0: stable on amd64
Gentoo-Bug: 601994
Amadeusz Żołnowski · gentoo
sys-apps/firejail-lts: Move LTS version to separate package
Having it in a separate package makes it easier for users to follow LTS branch of firejail. Before that users had to mask older versions to test LTS. It's better than having it slotted because portage by default picks up latest version from any slot and user would have to explicitly install particular slot. Package-Manager: Portage-2.3.3, Repoman-2.3.1