public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-user] sandboxed Firefox
       [not found] <ed742da1-6b7a-fe45-b90a-4d8d38f023d7.ref@yahoo.com>
@ 2022-10-09 17:20 ` ralfconn
  0 siblings, 0 replies; only message in thread
From: ralfconn @ 2022-10-09 17:20 UTC (permalink / raw
  To: gentoo-user

This weekend I tried Sakaki's excellent guide to running Firefox in a 
sandbox [1]. For the most part I religiously followed the guide, except:

- being on a desktop I was not too interested in setting up the bridge 
needed for WLAN; since it did not work out-of-the-box (possibly due to 
my config already running shorewall), I ditched that part and run 
'firejail --net=xxx ...'

- I'm running firefox-bin so I could not follow the USE=-gmp-autoupdate part

- minor stuff related to Xfce vs GNOME, and some no longer present USE flags

Seems to work fine, I'm just wondering if I should adapt my shorewall 
configuration to the different usage. My understanding is that Sakaki 
mainly uses it for the WLAN bridge and optionally to filter port 25 (for 
email spam prevention) so if I'm using a wired Ethernet I can safely 
skip this part, at least initially, anybody can confirm?

Anybody else has had experience with this way of sandboxing?

thanks,

raffaele

[1] 
https://wiki.gentoo.org/wiki/User:Sakaki/Sakaki's_EFI_Install_Guide/Sandboxing_the_Firefox_Browser_with_Firejail



^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2022-10-09 17:20 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
     [not found] <ed742da1-6b7a-fe45-b90a-4d8d38f023d7.ref@yahoo.com>
2022-10-09 17:20 ` [gentoo-user] sandboxed Firefox ralfconn

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox