Create whitelist-run-common.inc #4288
Conversation
|
lol, nothing works anymore |
|
I'm not sure which version is in the ppa but you need #4302. |
|
I have If nobody reports testing here, I go forward, merged this PR and start adding it to some profiles. |
|
in order to test this, you need to compile firejail from source.... |
No, you can it install with your package manager in Arch Linux and Fedora Rawhide. And other distros like Debian unstable, Debian stable+backports, OpenSUSE tumbleweed, Manjaro will follow soon. So depending you your distros, you already do it. And TBH firejail is one of the easiest programs to compile form source that I know. Furthermore Arch Linux users can install firejail-git which is even easier.
The most people (frequently) hanging here and reading this compile firejail from source as it looks for me. Anyway we don't need much testers a few with different distros and dns setups are enough. There are 5 whitelists ATM so there aren't to much possibilities to differ. The only thing that I worry about are resolv.conf symlinks. |
FWIW, I've been running with this without any issues on Arch Linux. But my resolv.conf also is a file instead of a symlink (never used systemd-resolved) so on that part I cannot add anything relevant. |
This still needs testing. Add it to your globals.local. Does everything still work?
If someone who use systemd-resolved can say more which resolv.conf is necessary on such system.