fw-daemon

Commit Graph

Author	SHA1	Message	Date
Stephen Watt	e3ab56486b	Upgraded standalone fw-prompt for DBus compatibility with new fw-daemon. Averted potential panic issue in SOCKS5 listener. Fixed strange whole-window scrolling behavior in fw-prompt. Removed verbose debug output in fw-prompt.	7 years ago
dma	2869f15ba1	Remove hack + debug output because of fix in `af1a925b11`	7 years ago
dma	ef9a0a22c2	Make log more sublogmon friendly	7 years ago
dma	ed8c254404	Add TLSGuard to SOCKS5 filter clients not coming from oz-daemon	7 years ago
dma	e7a803f84f	Temporary workaround	7 years ago
dma	9ac3c3fa92	Temporary workaround to drop connections from the sandbox manager that we can't further identify.	7 years ago
xSmurf	6e6e265fae	Fmt..	7 years ago
dma	7b5a0ed980	Bug fixes, cleanup, improvement	7 years ago
dma	f3f5414fd4	Support for TLSGuard in prompter	7 years ago
shw	2e7b7debeb	Incorporated TLSGuard and turned it on by default for all outbound SOCKS5 connections. Fixed display of nil IPs (when only hostname is passed via SOCKS5 connect).	8 years ago
shw	27d0a4809d	Updated SOCKS5 connection lookup code now correctly identifies originating process. Includes code to read internal proxy state information from (updated) oz-daemon.	8 years ago
shw	acf62b63d1	Changed SOCKS/Tor credential randomization so it only occurs if username and password are empty.	8 years ago
shw	de4f6ac206	SOCKS/Tor credential randomization to force new circuits with each outbound connection.	8 years ago
shw	5f5042fed4	Very noisy, experimental support for asynchronous multi-rule firewall prompting. Fixed prompted rule removal bug in fw-prompt.	8 years ago
shw	51c181a881	Full support for multiple protocol types (UDP, ICMP). Cleared up awkward fw-settings/fwprompt GUI language caused by introduction of UDP/ICMP ("connection"-less) rules. fw-daemon automatically passes through all ICMP traffic sent to same address. Added (temporary) rule for passing through all UDP-based DNS server traffic. Updated developers' README documentation.	8 years ago
shw	0708f9127c	Proper logging of all connections denied by firewall. fw-daemon now also forces logging to syslog if launched from a terminal.	8 years ago
shw	e895f204a7	Fixed bug so that system-wide firewall settings match all traffic except sandboxed traffic.	8 years ago
shw	b4ed11261f	Added extra display info for "Sandboxed application" in fw-prompt gnome shell GUI. fw-prompt GUI gracefully displays unknown PIDs and UIDs. Fixed stupid syntax error bug in oz-init PID management code.	8 years ago
shw	9069c91606	Garbage dump commit of current progress.	8 years ago
shw	cadb859dce	Added ephemeral oz sandbox/fw-daemon rules that can be updated via IPC connection. fw-daemon prompter is now updated with source address of originating packet. Fixed bug in decoding DNS data. Packets are dropped properly (by marking and then calling Accept()).	8 years ago
shw	1e84a6e168	Reincorporated socks5 code. Fixed small but critical bug in rules matching/IP comparison.	8 years ago

21 Commits (7c657b9f53b2fbd68fb63e33fd5b0b16deeb39d8)