Commit graph

863 commits

Author SHA1 Message Date
Dan Kortschak
4aced28c79
Clarify installation links in home page 2021-04-01 10:05:34 +10:30
Gustavo Iñiguez Goia
28ee155be0
Update Known-problems.md 2021-03-19 17:49:15 +01:00
Gustavo Iñiguez Goia
6703ad4933
Merge pull request #360 from themighty1/wiki
go 1.11 gives compilation errors, go 1.12 compiles ok
2021-02-28 10:00:08 +01:00
themighty1
df46cf1edf go 1.11 gives compilation errors, go 1.12 compiles ok 2021-02-28 11:26:34 +03:00
Gustavo Iñiguez Goia
37746f62bc
Merge pull request #358 from themighty1/wiki
update compilation instructions
2021-02-24 21:00:14 +01:00
themighty1
8e49ef3f5f update compilation instructions 2021-02-24 22:54:27 +03:00
Gustavo Iñiguez Goia
2693d150b4
Merge pull request #351 from themighty1/wiki
add Footer and explain how to submit changes to the wiki.
2021-02-15 19:48:53 +01:00
themighty1
8e7e0a2dce add Footer and explain how to submit changes to the wiki. 2021-02-15 20:44:39 +03:00
Gustavo Iñiguez Goia
3c87288914
Merge pull request #349 from themighty1/wiki
add wiki
2021-02-15 10:41:26 +01:00
themighty1
955ed45f2c add wiki 2021-02-14 22:04:12 +03:00
Gustavo Iñiguez Goia
510a351053 ui, rules: replace rules received from the daemon
We added UPSERTS, to update the time of a rule when a connection matched
that rule.

However UPSERTS in SQLite weren't introduced until v3.24.x, thus it
causes errors on older versions (like the ones shipped with Ubuntu
16/18).

On the other hand, we need to replace the rules once we receive them
from the daemon, to reflect on the GUI any change made on the rules by hand.

More info: #344
2021-02-13 19:55:47 +01:00
Gustavo Iñiguez Goia
f0384fb7e5 deb: fixed debian/changelog 2021-02-13 18:19:11 +01:00
Gustavo Iñiguez Goia
2599c784ac
Merge pull request #347 from themighty1/go_vet_fixes
minor fixes to prevent go vet from complaining
2021-02-13 18:09:50 +01:00
themighty1
1d23e73566
test for activepids.go (#345)
* test for activepids.go

* test file

Co-authored-by: themighty1 <you@example.com>
2021-02-13 18:07:51 +01:00
themighty1
41172b65e5 minor fixes to prevent go vet from complaining 2021-02-13 19:18:38 +03:00
Gustavo Iñiguez Goia
5e1a398bc6
Merge pull request #341 from tioguda/translation
Update Brazilian Portuguese translation
2021-02-10 21:58:22 +01:00
Gustavo Iñiguez Goia
d33cf8b8ba Bump version to 1.3.6 2021-02-10 20:17:02 +01:00
Gustavo Iñiguez Goia
7995d7b5db ui, pop-up: fixed expanding labels
In some KDE versions, the cmdline and args labels of a process were not
being expanded properly.
2021-02-10 01:08:28 +01:00
Gustavo Iñiguez Goia
2d907142cd ui: added pause state icon
When the user pauses the interception from the events window, update the
systray icon as well. Otherwise it looks like the interception is on.

- #339
2021-02-08 16:41:52 +01:00
Gustavo Iñiguez Goia
3a5ee13caa ui, prompt: improved showing app path and args
The pop-ups display 3 labels:
 - The name of the app (Firefox, aMule, Chromium, etc)
 - The path of the binary (/usr/bin/telnet)
 - The cmd line that was typed or executed (telnet 1.1.1.1)

The app name is always displayed. If we haven't found the app for a
given connection, "Unknown process" is displayed".

The app path is where the binary is located, and the app arguments is
the cmd line that wsa typed by the user, or executed by a process.

So for example, if you execute: telnet 1.1.1.1, the user wouldn't know
what is the path of the application. Someone could have faked it, thus
it's useful to display path to the binary.

On the other hand, if you execute /usr/bin/telnet.netkit 1.1.1.1, the
binary path is already part of the cmdline, so there's no need to show
that information to the user.
2021-02-08 00:50:01 +01:00
Gustavo Iñiguez Goia
1e45a4c98b tests: fixed TestLookupPidInProc
We expect to find at least one process that its inode 1 points to
/dev/null. The returned pid shouldn't be -1.
2021-02-06 15:29:24 +01:00
Gustavo Iñiguez Goia
95e4afac8e ui: fixed configuring rules default duration
Default duration was not set properly on the first run, defaulting to
allow/deny connections always "once", until it was changed by the user.
2021-02-06 12:48:46 +01:00
themighty1
af9c17ceb8
maintain a cache of struct Process for currently active PIDs (#342)
* maintain a cache of struct Process for currently active PIDs
decreases PID lookup time from ~100usec to ~5usec

* Update activepids.go

remove import "os"

Co-authored-by: themighty1 <you@example.com>
2021-02-06 11:30:59 +01:00
tioguda
3b750f71ca
Update Brazilian Portuguese translation 2021-01-30 05:54:54 -03:00
Gustavo Iñiguez Goia
b0e50f2f11
Merge pull request #340 from themighty1/nfmark_keep
preserve nfmark when NF_ACCEPT'ing packets
2021-01-27 11:57:59 +01:00
themighty1
ff6ede0557 preserve nfmark when NF_ACCEPT'ing packets
Mullvad VPN uses an nfmark on packets when establishing a connection with their VPN servers.
If we don't preserve the nfmark, the connection will never be established.
2021-01-25 11:50:57 +03:00
Gustavo Iñiguez Goia
ee76b9c6b9 ui, stats: order rules by name by default
- orders rules by name, but if the user orders the rules by others
  columns keep it.
- fixed updating nodes when reconnecting.
2021-01-25 01:24:25 +01:00
Gustavo Iñiguez Goia
37f91bb3dc ui: improved rules section
request #334:
- added context menu: clone
- added context menu: edit
- added context menu: enable/disable
- clicking on any cell selects the row, instead of only a cell.
- removed internals fields of a rule in the rule's details view
- fixed displaying rules by nodes, type, etc, after clicking on the left
  panel.

- don't allow to edit rules that are of unknown type
  (simple, regexp, network, list).
2021-01-23 00:11:40 +01:00
Gustavo Iñiguez Goia
a6afb9571b ui: fixed displaying node stats, rules timestamp
- Use unixnano field when inserting rules to the DB, instead of the time
  when it's actually inserted.
- Fixed displaying local node stats with linuxmint's python3-grpcio
  (1.16.x)
2021-01-22 15:56:56 +01:00
Gustavo Iñiguez Goia
b4672830cd fixed regexp rules exceptions
- ui, ruleseditor: added missing operator when using a regular
  expression on the DstIP/Net field.
- daemon, rules: ensure that regular expressions are of type string
  before evaluating them.

reported here: #333
2021-01-17 16:45:28 +01:00
Gustavo Iñiguez Goia
b1dd51be7a
Update README.md 2021-01-14 23:08:57 +01:00
Gustavo Iñiguez Goia
e23b838500 ui, stats: better position for rules panes
On the first run the left pane was taking all the space on some
environments.
2021-01-12 17:17:36 +01:00
Gustavo Iñiguez Goia
bdafd7fb42 Bump version to 1.3.5 2021-01-11 23:01:23 +01:00
Gustavo Iñiguez Goia
f2c4b37d6e deleted output rule to drop marked packets
We had an OUTPUT rule to drop marked packets. Packets are marked with a
mark when a user defined rule denies a connection.

The thing is that we only intercept NEW connections, and when we deny a
connnection using NF_DROP, the packets doesn't flow to the next iptables
rule or chain. So it'd be rare to see a packet on the OUTPUT chain marked
with the DropMark.

Besides, nfq_set_verdict2() doesn't seem to place the mark on the
packets (libnetfilter-queue 1.0.5).

This OUTPUT rule had 0 hits on different systems and users.
2021-01-10 23:20:50 +01:00
Gustavo Iñiguez Goia
2f80beb592
Merge pull request #331 from tioguda/translation
Update Brazilian Portuguese translation
2021-01-10 12:40:42 +01:00
Gustavo Iñiguez Goia
eb1534136d
Merge pull request #330 from freddii/master
german translation update
2021-01-10 12:03:57 +01:00
tioguda
db7d4c288c
Update Brazilian Portuguese translation 2021-01-09 20:54:50 -03:00
freddii
23f35a556e german translation update 2021-01-10 00:31:54 +01:00
Gustavo Iñiguez Goia
2d04579fba ui: updated translations files
plus a change: until reboot
2021-01-09 23:48:01 +01:00
Gustavo Iñiguez Goia
6c40502bbc ui: fixed pop-ups regexp options
When the GUI is translated, we were not getting IP/domains regexp
correctly. In other languages "to" has a different number of characters
(a, para, zu, ...)
2021-01-09 17:43:50 +01:00
Gustavo Iñiguez Goia
18693cdc6d ui: added hints to buttons, changed until restart
- Added hints to buttons that delete intercepted events, hosts, etc.
closes #329

- Changed "for this session" action by "until reboot". closes #307
2021-01-09 17:25:17 +01:00
Gustavo Iñiguez Goia
024fa3e1b6 ui: added utils for group some common code
messages, operations on strings, etc.
2021-01-07 00:06:40 +01:00
Gustavo Iñiguez Goia
0a9e3479e4 ui, deb/rpm: package translations
Package translations in order to distribute and install them.
2021-01-06 21:41:54 +01:00
Gustavo Iñiguez Goia
d3ce534b1f ui, stats: fixed items filtering
On tabs where you can filter items typing in the search box, after
coming back from a detailed view, the previous search was not being
restored.
2021-01-06 01:25:57 +01:00
Flávio Costa
a91739bdce
Add Brazilian Portuguese translation (#328)
* Add Brazilian Portuguese translation

* Update Brazilian portuguese translations

* Fix Brazilian Portuguese translation
2021-01-05 22:47:35 +01:00
freddii
9e4248e923
fixed german translation (#327)
* fixed german translation

* fixed typing mistake

Co-authored-by: freddii <https://freddii@github.com>
2021-01-05 11:53:12 +01:00
Gustavo Iñiguez Goia
8bc06e50aa i18n: updated spanish and basque translations 2021-01-04 21:53:20 +01:00
Gustavo Iñiguez Goia
72b8472eec ui, popups: improved message when resolving a domain
Improved message displayed when resolving a domain.

requested here: #321
2021-01-04 21:46:33 +01:00
Gustavo Iñiguez Goia
fcab4458fd
Merge pull request #325 from freddii/master
added german translation
2021-01-04 16:54:23 +01:00
freddii
d0fa290734 added german translation 2021-01-04 15:58:33 +01:00