ParrotOS's Firejail Code
Open, NormalPublic
Actions

Assigned To

None

Authored By

	HulaHoop
	Jun 26 2018, 5:12 AM

Description

ParrotOS have made a lot of progress in making firejail a general usable solution out of the box while supporting a ton of programs and surviving upgrades. This ticket is for taking advantage of their code and merging it in our distro.

https://forums.whonix.org/t/install-firejail-firetools-by-default/5363/4
https://forums.whonix.org/t/check-parrot-os-sandboxing-code/5361/5
https://forums.whonix.org/t/firejail-seccomp-more-options-for-program-containment/1030/65

Details

Impact: Normal

Related Objects

Mentioned In: T869: Install Firejail by default inside Whonix

Event Timeline

HulaHoop triaged this task as Normal priority.Jun 26 2018, 5:12 AM

HulaHoop created this task.

Herald added a project: Whonix. · View Herald TranscriptJun 26 2018, 5:12 AM

Herald added subscribers: • entr0py, • WhonixQubes, Patrick. · View Herald Transcript

Patrick added a project: Whonix 16.Jul 12 2018, 2:54 PM

russsaidwords added a subscriber: russsaidwords.Sep 5 2018, 7:14 PM

@HulaHoop that doesnt mean we dont install firejail by default.

with or without parrot profiles. because firejail by default it has their own profiles.

firejail is enough for Whonix-GW
firejail + firetools for Whonix-WS

I disagree. Firetools makes administration easier and has a place on both VMs.

No problem, but needs to add the commands manually to firetools in the GW.

as Firetools doesnt has the graphical icons for non-graphical programs e.g Tor. (and even some graphical programs e.g Tor Browser).

needs some extra steps , but hope no big deal.

Patrick mentioned this in T869: Install Firejail by default inside Whonix.Apr 12 2019, 5:00 PM

ParrotOS's Firejail CodeOpen, NormalPublicActions

Description

Details

Related Objects

Event Timeline

ParrotOS's Firejail Code
Open, NormalPublic
Actions