Commit Graph

238 Commits (shw-merge)
 

Author SHA1 Message Date
shw 515c4eb3ee Squashed (some) noisy debug output.
8 years ago
shw 0f2b2413ea Added per-process (ephemeral) rule support.
8 years ago
shw af874c7395 Added support for AAAA records to DNS cache for IPv6 addressing.
8 years ago
shw 8546f6c416 Working (but not intensively tested) IPv6 support!
8 years ago
shw 5f5042fed4 Very noisy, experimental support for asynchronous multi-rule firewall prompting.
8 years ago
shw 3319802a80 Lots of assorted cleanup.
8 years ago
shw aba795fa97 Lots of work to establish basic support for approving/denying rules.
8 years ago
shw e3833190bf Created pre-functional replacement GUI for fw-daemon prompter that is independent of gnome-shell.
8 years ago
shw c3635093fa Introduced per-process DNS cache segregation for all A records not returned by local resolver.
8 years ago
shw 51c181a881 Full support for multiple protocol types (UDP, ICMP).
8 years ago
shw ea31a28d3a Added requisite Dbus code so that fw-settings automatically refreshes its rulelist on fw-daemon update.
8 years ago
shw f47e23e706 Support for firewall rule matching by uid/gid and/or user/group name value.
8 years ago
shw fa70c06af2 CIDR subnet/mask matching support for firewall rules.
8 years ago
shw 1cd25ed699 Added simple regex-based hostname matching for firewall rules.
8 years ago
shw 0708f9127c Proper logging of all connections denied by firewall.
8 years ago
shw e895f204a7 Fixed bug so that system-wide firewall settings match all traffic except sandboxed traffic.
8 years ago
shw b567e5ce54 oz-init pid mappings are now properly destroyed as these processes exit.
8 years ago
shw a930fbbce0 Sandboxed process entries in GUI now include sandbox name/ID in display.
8 years ago
shw ba35abfb46 Name of sandboxed exe returned by procsnitch is now resolved to absolute pathname.
8 years ago
shw b4ed11261f Added extra display info for "Sandboxed application" in fw-prompt gnome shell GUI.
8 years ago
shw 7a1851419c Added support for using fw-daemon on all processes system-wide.
8 years ago
shw 30482bf15b Support for wildcard ports in dynamic OZ/fw rules.
8 years ago
shw e1a994169f Added removeall IPC command for stripping all rules matching a source interface.
8 years ago
shw 670abc5232 Removed code for custom matching of firewall rules.
8 years ago
shw 9069c91606 Garbage dump commit of current progress.
8 years ago
xSmurf ee41b3b83e Fixed categories in .desktop file...
8 years ago
xSmurf fb477e15f1 Added info about iptable rules...
8 years ago
xSmurf 0b124fa007 Added build depends to build instructions...
8 years ago
shw 08266cca76 Support for handling network traffic that can't be uncovered with procsnitch.
8 years ago
shw e3cc00a51f Readme for testing fw-daemon with bridged traffic.
8 years ago
shw cadb859dce Added ephemeral oz sandbox/fw-daemon rules that can be updated via IPC connection.
8 years ago
shw 942b0a0c01 Bug fix.
8 years ago
shw 8fe02202de Very dirty/experimental replacement of nfqueue with native github.com/subgraph/go-nfnetlink package.
8 years ago
shw 4955c6a66b Added (unused) origin field in firewall gnome-shell UI.
8 years ago
shw 1e84a6e168 Reincorporated socks5 code.
8 years ago
xSmurf 3bb8d65ed1 Added fw-settings desktop file
8 years ago
xSmurf 93f561849b Fixed typos in readme...
8 years ago
xSmurf 383ce5df9b Added handbook description to the readme, and link to documnetation
8 years ago
xSmurf 90bbc67517 Linting...
8 years ago
xSmurf 02155c44ed Golint...
8 years ago
xSmurf c5b8dcb660 Golint..
8 years ago
xSmurf 55ee3ad83d Golint..
8 years ago
xSmurf 2e6f98e410 FMT...
8 years ago
xSmurf f750840b23 ...
8 years ago
xSmurf 3fac647e1c Added build info to README...
8 years ago
xSmurf 3d317e9964 moved main...
8 years ago
xSmurf 5d4b38c5b4 Refactor...
8 years ago
xSmurf 4b632fb6f2 Moved fw-daemon to command/lib
8 years ago
xSmurf 1c54b571ba ...
8 years ago
xSmurf 9c8f5895ca Moved all to sgfw
8 years ago