* [gentoo-user] sandboxed Firefox
[not found] <ed742da1-6b7a-fe45-b90a-4d8d38f023d7.ref@yahoo.com>
@ 2022-10-09 17:20 ` ralfconn
0 siblings, 0 replies; only message in thread
From: ralfconn @ 2022-10-09 17:20 UTC (permalink / raw
To: gentoo-user
This weekend I tried Sakaki's excellent guide to running Firefox in a
sandbox [1]. For the most part I religiously followed the guide, except:
- being on a desktop I was not too interested in setting up the bridge
needed for WLAN; since it did not work out-of-the-box (possibly due to
my config already running shorewall), I ditched that part and run
'firejail --net=xxx ...'
- I'm running firefox-bin so I could not follow the USE=-gmp-autoupdate part
- minor stuff related to Xfce vs GNOME, and some no longer present USE flags
Seems to work fine, I'm just wondering if I should adapt my shorewall
configuration to the different usage. My understanding is that Sakaki
mainly uses it for the WLAN bridge and optionally to filter port 25 (for
email spam prevention) so if I'm using a wired Ethernet I can safely
skip this part, at least initially, anybody can confirm?
Anybody else has had experience with this way of sandboxing?
thanks,
raffaele
[1]
https://wiki.gentoo.org/wiki/User:Sakaki/Sakaki's_EFI_Install_Guide/Sandboxing_the_Firefox_Browser_with_Firejail
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2022-10-09 17:20 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <ed742da1-6b7a-fe45-b90a-4d8d38f023d7.ref@yahoo.com>
2022-10-09 17:20 ` [gentoo-user] sandboxed Firefox ralfconn
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox