|
|
a77816e9de
|
refactor: sane-scripts: use whitelistDbus where available
|
2024-07-06 03:07:21 +00:00 |
|
|
|
f50b10682f
|
eg25-control: sandbox
|
2024-07-06 03:06:58 +00:00 |
|
|
|
b062610866
|
gps-share: sandbox
|
2024-07-06 03:06:33 +00:00 |
|
|
|
bce8a0d91f
|
geoclue: dont place unsandboxed files on PATH
|
2024-07-06 03:05:49 +00:00 |
|
|
|
3c53bca156
|
vpn: log a message whenever the endpoint is updated
only as i'm actively working in this area. hopefully this log message can be less noisy in the future
|
2024-07-06 03:03:38 +00:00 |
|
|
|
46806e36f0
|
stop shipping some unused programs
|
2024-07-06 03:02:17 +00:00 |
|
|
|
4a8a5b309e
|
satellite: sandbox
|
2024-07-05 23:27:51 +00:00 |
|
|
|
8f46bd5497
|
hping: sandbox
|
2024-07-05 23:13:40 +00:00 |
|
|
|
2c3239da8b
|
mesa-demos (glxgears): sandbox
|
2024-07-05 23:12:46 +00:00 |
|
|
|
a08394edf1
|
callaudiod: sandbox
|
2024-07-05 23:12:16 +00:00 |
|
|
|
5e5ecfe81e
|
nwg-panel: add a button to toggle the flashlight on moby
|
2024-07-05 23:11:55 +00:00 |
|
|
|
5048bd8d70
|
sanebox: fix that pasta-sandboxed programs would fail compile-time sandboxing test
|
2024-07-05 20:41:28 +00:00 |
|
|
|
c7d8d9ee86
|
nwg-panel: add the backlight back into the sandbox
|
2024-07-05 20:32:34 +00:00 |
|
|
|
2e49946c65
|
gnome-calls: tunnel traffic through my home ISP
|
2024-07-05 20:18:47 +00:00 |
|
|
|
a12aa02655
|
sane.programs: provide sandbox.net = "vpn.wg-home" to tunnel through my home ISP
|
2024-07-05 20:18:34 +00:00 |
|
|
|
6d66a5dbf8
|
vpn: add a service to auto-refresh wireguard endpoints
|
2024-07-05 20:06:16 +00:00 |
|
|
|
a31f67b793
|
wg-home: remove dead code
|
2024-07-05 20:05:25 +00:00 |
|
|
|
5d80e298b5
|
wg-home: deploy so as to be compatible with sane-vpn (e.g., route *WAN* traffic through it)
|
2024-07-05 18:45:26 +00:00 |
|
|
|
56e488b130
|
sane-stop-all-servo: remove extraneous call to sudo
|
2024-07-05 14:12:48 +00:00 |
|
|
|
5ebaaf46a2
|
hping: ship
it's a handy net debugging tool
|
2024-07-05 00:51:06 +00:00 |
|
|
|
bee3ec1fa0
|
wireshark: fix sandboxing when reading pcaps
|
2024-07-04 22:28:02 +00:00 |
|
|
|
46eab8f4e2
|
gst-device-monitor: sandbox
|
2024-07-04 19:49:28 +00:00 |
|
|
|
828d4fcc9c
|
iio-sensor-proxy: sandbox
|
2024-07-04 19:27:16 +00:00 |
|
|
|
ca2ac89cec
|
avahi-browse: sandbox
|
2024-07-04 19:15:33 +00:00 |
|
|
|
1ae1d94d53
|
ols: sandbox
|
2024-07-04 19:11:16 +00:00 |
|
|
|
c68f333bc9
|
sanebox: document --sanebox-net-dev all
|
2024-07-04 19:11:06 +00:00 |
|
|
|
9a09faa9e4
|
objdump: sandbox
|
2024-07-04 19:00:14 +00:00 |
|
|
|
ae2eaa786c
|
sanebox: pasta: fix to never forward ports INTO the namespace
i thought this was OK, but i think it changes the *return route* as well, allowing for VPN escape -- specifically within gnome-calls (UPnP stuff?)
|
2024-07-04 18:48:14 +00:00 |
|
|
|
9c523b3ddd
|
geoclue-demo-agent: sandbox
|
2024-07-04 16:21:30 +00:00 |
|
|
|
44c4e88b90
|
gnome-calls: dont ship dbus files
|
2024-07-04 15:29:59 +00:00 |
|
|
|
5ca0ca4f47
|
servo: freshrss: disable (unused service)
|
2024-07-04 15:29:39 +00:00 |
|
|
|
00ea7e17c5
|
servo: remove unused calibre service
|
2024-07-04 14:00:40 +00:00 |
|
|
|
823f8f2be3
|
feeds: subscribe to FLOSS Weekly
|
2024-07-04 13:34:48 +00:00 |
|
|
|
13bec790cb
|
feeds: link to Wikipedia podcasts lists
|
2024-07-04 13:29:39 +00:00 |
|
|
|
e72f9be1bf
|
feeds: subscribe to Sharp Tech
|
2024-07-04 13:23:36 +00:00 |
|
|
|
0fd8dc2a01
|
sane-scripts.stop-all-servo: sandbox (correctly, i hope)
|
2024-07-04 12:44:28 +00:00 |
|
|
|
24ed242bac
|
servo: fix warning for getExe and iptables
|
2024-07-04 12:43:02 +00:00 |
|
|
|
f290b16f12
|
sane-bt: transmission -> transmission_4
|
2024-07-04 12:40:09 +00:00 |
|
|
|
b4cb3decff
|
s6-rc: fix wrapper to expand XDG_RUNTIME_DIR again
|
2024-07-04 12:38:06 +00:00 |
|
|
|
7084bf95fa
|
where-am-i: sandbox
|
2024-07-04 12:35:09 +00:00 |
|
|
|
acd0926d1f
|
nwg-panel: sandbox
|
2024-07-04 12:34:35 +00:00 |
|
|
|
2dba46da6b
|
pactl: sandbox
|
2024-07-04 11:18:06 +00:00 |
|
|
|
110c440697
|
programs: soundconverter: fix sandboxing
|
2024-07-04 10:33:51 +00:00 |
|
|
|
f4047bfbea
|
koreader: docs: increase default font size 28 -> 30
am i getting old?
|
2024-07-04 08:49:49 +00:00 |
|
|
|
c573ac4e7e
|
overlays/preferences: fix evolution-data-server to build w/o webkit, again (missed this in a recent rename)
|
2024-07-04 08:12:29 +00:00 |
|
|
|
cc15be54d4
|
uassets: 2024-07-02 -> 2024-07-03
|
2024-07-04 06:59:46 +00:00 |
|
|
|
8b95a5fa37
|
nixpkgs: 2024-07-02 -> 2024-07-03
|
2024-07-04 06:59:46 +00:00 |
|
|
|
b596f88ccc
|
nixpkgs-wayland: 2024-07-02 -> 2024-07-03
|
2024-07-04 06:59:36 +00:00 |
|
|
|
e82feb9f71
|
make-sandboxed: migrate to binary wrapper
|
2024-07-03 19:35:56 +00:00 |
|
|
|
4839a40205
|
make-sandboxed: use makeWrapper proper, rather than rolling my own
i can't use the _binary_ wrapper unless i use a fully-qualified path to 'sanebox' or hide it behind something like /usr/bin/env
|
2024-07-03 17:54:38 +00:00 |
|
