2018-04-02 05:25:32 +02:00
|
|
|
# OpenSnitch
|
|
|
|
|
|
2018-04-05 18:50:25 +02:00
|
|
|
OpenSnitch is a GNU/Linux port of the Little Snitch application firewall.
|
|
|
|
|
|
2018-04-05 17:00:47 +02:00
|
|
|
<p align="center">
|
|
|
|
|
<img src="https://raw.githubusercontent.com/evilsocket/opensnitch/master/screenshot.png" alt="OpenSnitch"/>
|
|
|
|
|
</p>
|
2018-04-02 05:25:32 +02:00
|
|
|
|
2018-04-05 17:00:47 +02:00
|
|
|
**Warning: This is still alpha quality software, don't rely on it (yet) for your computer security.**
|
2018-04-02 05:25:32 +02:00
|
|
|
|
2018-04-05 18:50:25 +02:00
|
|
|
### Daemon
|
|
|
|
|
|
|
|
|
|
The `daemon` is implemented in Go and needs to run as root in order to interact with the Netfilter packet queue, edit
|
|
|
|
|
iptables rules and so on, in order to compile it you will need to install the `libpcap-dev` and `libnetfilter-queue-dev`
|
|
|
|
|
libraries on your system, then just:
|
|
|
|
|
|
|
|
|
|
cd daemon
|
|
|
|
|
go build .
|
|
|
|
|
|
|
|
|
|
### Qt5 UI
|
|
|
|
|
|
|
|
|
|
The user interface is a python script running as a `gRPC` server on a unix socket, to order to install its dependencies:
|
|
|
|
|
|
|
|
|
|
cd ui
|
|
|
|
|
pip install -r requirements.txt
|
|
|
|
|
|
|
|
|
|
### Running
|
|
|
|
|
|
2018-04-05 19:15:08 +02:00
|
|
|
First, you need to decide in which folder opensnitch rules will be saved, it is suggested that you just:
|
|
|
|
|
|
|
|
|
|
mkdir -p ~/.opensnitch/rules
|
|
|
|
|
|
|
|
|
|
Now run the daemon:
|
2018-04-05 18:50:25 +02:00
|
|
|
|
|
|
|
|
sudo /path/to/daemon -ui-socket-path /tmp/osui.sock -rules-path ~/.opensnitch/rules
|
|
|
|
|
|
|
|
|
|
And the UI service as your user:
|
|
|
|
|
|
|
|
|
|
python /path/to/ui/main.py --socket /tmp/osui.sock
|
