Linux MintThis forum is for the discussion of Linux Mint.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
^ These are the resources I currently have, but am a relative newb, and definitely want to set it up.
Question:
Can someone provide a step-by-step line guide to installing FJ? Do I want to Firetools with it? I heard on Aaron Jone's video [12:40 in] that "firecnfg" will firejail every single app on your system, but it sometimes has unintended consequences.
What I'm looking for here:
A simple way of hardening my system by separating the app access, with a list explaining how to do it.
-Seriously appreciate all the help here, am grateful for such a concerned community, and hopeful to be in the same position one day so that I can help people make the Linux switch. Thanks so much again
Firejail may be easier to use because it comes equipped out of the box with profiles for many applications (on Debian-based systems, they're in package firejail-profiles). So, if all your uses are covered by them then you don't need to configure anything.
OTOH, if you use applications not listed there and don't know (or don't want to learn) how to write Firejail profiles for them, then AppArmor offers a more generic solution including a learning mode.
Mind you, AppArmor also comes with some ready-made profiles (in package apparmor-profiles), but most of them seem rather to be geared toward server uses.
Firejail may be easier to use because it comes equipped out of the box with profiles for many applications (on Debian-based systems, they're in package firejail-profiles). So, if all your uses are covered by them then you don't need to configure anything.
OTOH, if you use applications not listed there and don't know (or don't want to learn) how to write Firejail profiles for them, then AppArmor offers a more generic solution including a learning mode.
Mind you, AppArmor also comes with some ready-made profiles (in package apparmor-profiles), but most of them seem rather to be geared toward server uses.
Excellent advise--I really appreciate it.
Unfortunately, I'm still unsure how to install Firejail. :/
When I type the command[s] into the line,
it runs processes, but firejail is nowhere to be found in my applications.
"Unfortunately, I'm still unsure how to install Firejail. :/
When I type the command[s] into the line,
it runs processes, but firejail is nowhere to be found in my applications."
I found the command lines online, and when I put them in, it listed a number of processes as being activated,
but afterwards, firejail was nowhere to be found.
Any chance you could let me know the right command lines in order to install it properly?
"Unfortunately, I'm still unsure how to install Firejail. :/
When I type the command[s] into the line,
it runs processes, but firejail is nowhere to be found in my applications."
I found the command lines online, and when I put them in, it listed a number of processes as being activated,
but afterwards, firejail was nowhere to be found.
Any chance you could let me know the right command lines in order to install it properly?
-Sincerely appreciate all the help here
It is installed.
firejail is a command line application, it won't show up in your GUI menu.
If you're not comfortable using the command line you won't be comfortable using firejail either. Sorry.
Does anybody know how to add (customised) profiles on Firejail using the user interface rather than on the terminal? I have been searching online but I have not found anything at all. For example, I tried to add CherryTree using the path below (executable file?) but did not work; actually, it does not even display the cherrytree icon on the GUI once the steps on the configuration wizard are completed:
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.