You are not logged in.
Hello
I have a question regarding proxychains and firejail: I would like to have the security of running thunderbird through firejail with seccomp, and at the same time the privacy by running it through a socks proxy in proxychains. I cannot get i to function properly, does anyone have an idea regarding how I can get this to work, or another way I can accomplish the same?
This is how I would run thunderbird with firejail:
firejail --seccomp thunderbird
And with proxychains:
proxychains thunderbird
Regards,
Frederik
Last edited by Fred7109 (2016-06-23 20:39:14)
Offline
Does proxychains not work inside firejail?
Offline
Unfortunately not. When I for example try to run:
firejail proxychains thunderbird
It says following:
[xxx@xxx-arch-linux Startup]$ firejail proxychains thunderbird
Reading profile /etc/firejail/default.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/disable-passwdmgr.inc
Warning: user namespaces not available in the current kernel.
** Note: you can use --noprofile to disable default.profile **
Parent pid 19433, child pid 19434
Warning: /sbin directory link was not blacklisted
Warning: /usr/sbin directory link was not blacklisted
Child process initialized
[proxychains] config file found: /etc/proxychains.conf
[proxychains] preloading /usr/lib/libproxychains4.so
[proxychains] DLL init: proxychains-ng 4.11
Sandbox: unexpected multithreading found; this prevents using namespace sandboxing. (If you're LD_PRELOAD'ing nVidia GL: that's not necessary for Gecko.)
It asks for a new profile in Thunderbird, because it cannot find the correct one?
Offline
I think that's firejail pointing out that you could disable the default.profile if you wanted to. You could try:
firejail --profile=/etc/firejail/thunderbird.profile
followed by:
proxychains thunderbird
in the new firejail shell but I've no idea if that will work.
Offline
Thank you smudge, it works! However, it comes with an error message:
Exception... "Component returned failure code: 0x8000ffff (NS_ERROR_UNEXPECTED) [nsIPrefBranch.getCharPref]" nsresult: "0x8000ffff (NS_ERROR_UNEXPECTED)" location: "JS frame :: chrome://sogo-connector/content/general/preference.service.addressbook.groupdav.js :: GdPSvc__getPref :: line 126" data: no] (126)
exception getting pref 'extensions.ca.inverse.addressbook.groupdav.ldap_2.servers.history.url':
Offline