mirrors/opensnitch
1
0
Fork 0
mirror of https://github.com/evilsocket/opensnitch.git synced 2025-03-04 08:34:40 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

updated after opensnitch repo commit fdb0c13aa9

wiki auto updater 2022-02-05 19:39:22 +00:00
parent f6b4060a1d
commit f3891e7b50
1 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
Rules-examples.md

@ -79,6 +79,16 @@ targets ports 5551, 5552, 5553, 5554 OR 5555.
` [x] From this executable: ^/usr/bin/python[0-9\.]*$`
**Filtering python scripts (applicable to java and others interpreters)**
---
The general recommendation is to either allow or deny by `Command line` or better, by Process path + Command line:
![image](https://user-images.githubusercontent.com/2742953/152648281-01e5797b-662d-46d2-b11c-1966feecc54c.png)
If you allow python3, you'll allow ANY python3 script, so be careful. This is also true for other interpreted languages, like Java, Ruby, Perl and others.
https://github.com/evilsocket/opensnitch/discussions/612#discussioncomment-2116878
**Filtering LAN IPs or multiple ranges**
---