mirrors/opensnitch
1
0
Fork 0
mirror of https://github.com/evilsocket/opensnitch.git synced 2025-03-04 08:34:40 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
503 commits 11 branches 43 tags 36 MiB
Commit graph

503 commits

This branch
This branch
All branches
Author SHA1 Message Date
Gustavo Iñiguez Goia
3ec0ec60a9 Unified UI config files 
Originally UI config file was saved to ~/.opensnitch/ui-config.json

Now those values are saved to ~/.config/opensnitch/settings.conf, along
with new ones.

Closes #3
 2020-02-09 21:04:19 +01:00
Gustavo Iñiguez Goia
1e6d2c0b67 Unified UI config files 
Originally UI config file was saved to ~/.opensnitch/ui-config.json

Now those values are saved to ~/.config/opensnitch/settings.conf, along
with new ones.

Closes #3
 2020-02-09 20:56:26 +01:00
Gustavo Iñiguez Goia
8782b77625 Allow to compile the daemon with outdated libnetfilter-queue 
On Ubuntu 18.04 the libnetfilter-queue is not the latest one (1.0.3) and
it doesn't have UID/GID support.
 2020-02-09 19:28:27 +01:00
Gustavo Iñiguez Goia
6b77ce1346 Added UI alerts to warn about unanswered connections 2020-02-07 21:55:29 +01:00
Gustavo Iñiguez Goia
721e356ad6
Update README.md 2020-02-07 16:17:30 +01:00
Gustavo Iñiguez Goia
41a320efac
Update README.md 2020-02-07 12:47:36 +01:00
Gustavo Iñiguez Goia
a5f8d5b25d Display an alert when a new connection is not answered 
When the computer is on but you are away, you may miss some prompt
dialogs to allow or deny a connection. This way we warn the user about
something that happened, in order to review the UI.

Further work should maybe count and display the number of a connection,
and perhaps display a max of 5 different events.

It should also desirable to display a small number over the app icon.
 2020-02-07 10:18:54 +01:00
Gustavo Iñiguez Goia
700b540432 Bump UI version to v1.0.0-rc2 2020-02-07 10:17:04 +01:00
Gustavo Iñiguez Goia
a6fa494789 Expand prompt dialog Dst IP Combo Box 
It should span 2 columns
 2020-02-07 00:16:14 +01:00
Gustavo Iñiguez Goia
8e6d901ae4 Added Action and Duration columns to GUI Rules tab 2020-02-07 00:15:31 +01:00
Gustavo Iñiguez Goia
8fc2c5d55f Added UI debian/ files for packaging 
Work needed.
 2020-02-06 23:54:36 +01:00
Gustavo Iñiguez Goia
8c01d43d45 Workaround to stop and disable service on uninstalling 
dh_installsystemd seems to not work for me, so use this WA for now
 2020-02-06 23:54:36 +01:00
Gustavo Iñiguez Goia
998106ef24 Added missing debian/rules 2020-02-06 23:54:36 +01:00
Gustavo Iñiguez Goia
7d138e29a3 Removed UI code and try to resolve service problems 2020-02-06 23:54:36 +01:00
Gustavo Iñiguez Goia
e906bcb2ed Bump version to v1.0.0-rc2 2020-02-06 23:54:36 +01:00
Gustavo Iñiguez Goia
7d330f24d9 Bump version to 1.0.0-rc2 2020-02-05 00:57:06 +01:00
Gustavo Iñiguez Goia
793afefbb1 Expand prompt dialog Dst IP Combo Box 
It should span 2 columns
 2020-02-05 00:54:40 +01:00
Gustavo Iñiguez Goia
b60b78a3b2 Added Action and Duration columns to GUI Rules tab 2020-02-05 00:47:39 +01:00
Gustavo Iñiguez Goia
a978f405fc Fixed missing returned value 2020-02-05 00:26:32 +01:00
Gustavo Iñiguez Goia
847f7e2bec Added debian/ directory to generate deb packages 2020-02-04 23:59:50 +01:00
Gustavo Iñiguez Goia
695b5232f4 help stdeb to distribute resources files 2020-02-04 22:06:55 +01:00
Gustavo Iñiguez Goia
5d92cbb893 Load nfq_get_uid dynamically 
nfq_get_uid symbol does not exist on some systems.
 2019-12-05 01:48:21 +01:00
Gustavo Iñiguez Goia
3e6520edad Version changed to 1.0.0-rc1 2019-12-04 23:16:35 +01:00
Gustavo Iñiguez Goia
d0dbaa1d6e EnableHighDpiScaling only if qt version >= 5.6.0 
It was addded in 5.6 version
https://doc-snapshots.qt.io/qtforpython/PySide2/QtCore/Qt.html
 2019-12-03 23:11:50 +01:00
Gustavo Iñiguez Goia
77ec831119 Allow to view details of a rule/process from General tab 
In the General tab, clicking on an item of the column Rule or Process open the
details about that item.
 2019-12-03 22:33:03 +01:00
Gustavo Iñiguez Goia
996e9ad888 Added netlink IPv6 uid/inode lookup support 2019-12-02 23:53:41 +01:00
Gustavo Iñiguez Goia
d8ad8de6ef Lookup inode and uid via netlink 
It has some advantages over parsing /proc, like performance and
reliability.
 2019-12-01 20:10:49 +01:00
Gustavo Iñiguez Goia
4a30cc5b84 Reduced the pid cache sizes 
It's somewhat arbitrary. It'll depend on each use case.
 2019-12-01 20:05:20 +01:00
Gustavo Iñiguez Goia
36f8b27770 Allow to view details of a rule/process from General tab 
Clicking on an item of the column Rule or Process open the details about
that item.
 2019-11-27 00:33:22 +01:00
Gustavo Iñiguez Goia
77018a82a1 EnableHighDpiScaling only if qt version >= 5.6.0 
It was addded in 5.6 version
https://doc-snapshots.qt.io/qtforpython/PySide2/QtCore/Qt.html
 2019-11-25 21:41:25 +01:00
Gustavo Iñiguez Goia
39a3820ea7 Limit the number of connections on the main tab. 
With ~500k logged connections the app becomes unresponsive.
This way it minimizes a bit the high usage impact, but
definitely there's a limitation on this side, how many
events are we going to log?

It needs to be tested, but the same should be applied for the rest of
the tabs, and provide a search field and < > operands to navigate
records.
 2019-11-24 01:12:35 +01:00
Gustavo Iñiguez Goia
3e0b239d8f Display the app window when there's no system tray available 
Like in some gnome-shell setups.
 2019-11-23 23:56:15 +01:00
Gustavo Iñiguez Goia
911593e55a Prefer domains over IPs as default option to block/allow 2019-11-22 21:32:10 +01:00
Gustavo Iñiguez Goia
b2cc0eb164 Reset advanced rules check properly 
In the future the state could be saved to the settings.
 2019-11-21 22:12:28 +01:00
Gustavo Iñiguez Goia
891a3a4211 Fixed typo in tipPortsLabel 2019-11-20 18:51:49 +01:00
Gustavo Iñiguez Goia
cc27be2bae Added initial support for advanced rules (lists) 
Probably not the best UI, just the one I came up with.
 2019-11-20 10:27:28 +01:00
Gustavo Iñiguez Goia
925e2fe045 Removed unused import 2019-11-18 20:38:17 +01:00
Gustavo Iñiguez Goia
918433a1dd Improved performance and details view 
- Added a label to let the user know that an item in a column can be
clicked to view details about that item (process, host, user, ...).
- Improved performance by only adding the new items, or items that has
changed, instead of all the stats.
- Search General statistics by any column.
 2019-11-17 00:57:08 +01:00
Gustavo Iñiguez Goia
d38505650c added database file 2019-11-13 01:31:07 +01:00
Gustavo Iñiguez Goia
166cf49f4c improved UI 
General tab:
 - Allow to filter by action(deny/allow) + column.

Details tabs:
 - Double clicking on a column displays detailed stats for that item.
 - Sort by column and order (asc/desc).

Added Rules tab
 2019-11-13 01:24:55 +01:00
Gustavo Iñiguez Goia
912f85f5d1 Added more timeout options (30s, 5m, 15m, 30m, 1h) 
Added 30s, 5m, 15m, 30m and 1h timeout options to deny or allow
connections.

It helps to avoid repetitive new connection dialogs, while at the same
time it allows you to deny/allow a connection for a short period of time,
and apply the default for the rest.
 2019-11-09 01:35:13 +01:00
Gustavo Iñiguez Goia
93592b6b00 Allow to see which domain a process is trying to resolve 
Ideally this information should go in a different Connection field, but
for now lets use DstHost.
 2019-11-08 01:38:26 +01:00
Gustavo Iñiguez Goia
21c716492a Display username on the allow/deny dialog 2019-11-05 00:40:07 +01:00
Gustavo Iñiguez Goia
58cd5e9fc9 Added icons to allow and deny actions 2019-11-02 12:06:58 +01:00
Gustavo Iñiguez Goia
7eec749498 allow to configure unknown conns interception 
/etc/opensnitchd/default-config.json can now contain
"intercept_unknown": true|false
 2019-11-01 01:00:10 +01:00
Gustavo Iñiguez Goia
0773f8c01e
Merge pull request #1 from Ph0rkoz/master 
Master
 2019-10-31 13:36:40 +01:00
Phorkoz
e04353a869
grpcio-tools==1.10.1 pulls in grpcio of the correct version, stops the error on make install 
grpcio-tools==1.10.1 pulls in grpcio of the correct version, stops the error on make install
 2019-10-30 20:12:09 -05:00
Phorkoz
e7b853f7a2
Make upgrading the UI possible on code changes. 
UI
 2019-10-30 20:11:26 -05:00
Gustavo Iñiguez Goia
845e6a704f Intercept and parse UDPLite connections 
/proc/net/udplite[6]
 2019-10-29 20:01:45 +01:00
Gustavo Iñiguez Goia
a0eacfb8b8 Allow to intercept localhost and multicast connections 2019-10-29 19:53:07 +01:00