Stephen Watt
a8f61a2d4e
Re-sync to master.
7 years ago
dma
7b5a0ed980
Bug fixes, cleanup, improvement
7 years ago
dma
f3f5414fd4
Support for TLSGuard in prompter
7 years ago
shw
2e7b7debeb
Incorporated TLSGuard and turned it on by default for all outbound SOCKS5 connections.
...
Fixed display of nil IPs (when only hostname is passed via SOCKS5 connect).
8 years ago
shw
27d0a4809d
Updated SOCKS5 connection lookup code now correctly identifies originating process.
...
Includes code to read internal proxy state information from (updated) oz-daemon.
8 years ago
shw
acf62b63d1
Changed SOCKS/Tor credential randomization so it only occurs if username and password are empty.
8 years ago
shw
de4f6ac206
SOCKS/Tor credential randomization to force new circuits with each outbound connection.
8 years ago
shw
5f5042fed4
Very noisy, experimental support for asynchronous multi-rule firewall prompting.
...
Fixed prompted rule removal bug in fw-prompt.
8 years ago
shw
51c181a881
Full support for multiple protocol types (UDP, ICMP).
...
Cleared up awkward fw-settings/fwprompt GUI language caused by introduction of UDP/ICMP ("connection"-less) rules.
fw-daemon automatically passes through all ICMP traffic sent to same address.
Added (temporary) rule for passing through all UDP-based DNS server traffic.
Updated developers' README documentation.
8 years ago
shw
0708f9127c
Proper logging of all connections denied by firewall.
...
fw-daemon now also forces logging to syslog if launched from a terminal.
8 years ago
shw
e895f204a7
Fixed bug so that system-wide firewall settings match all traffic except sandboxed traffic.
8 years ago
shw
b4ed11261f
Added extra display info for "Sandboxed application" in fw-prompt gnome shell GUI.
...
fw-prompt GUI gracefully displays unknown PIDs and UIDs.
Fixed stupid syntax error bug in oz-init PID management code.
8 years ago
shw
9069c91606
Garbage dump commit of current progress.
8 years ago
shw
cadb859dce
Added ephemeral oz sandbox/fw-daemon rules that can be updated via IPC connection.
...
fw-daemon prompter is now updated with source address of originating packet.
Fixed bug in decoding DNS data.
Packets are dropped properly (by marking and then calling Accept()).
8 years ago
shw
1e84a6e168
Reincorporated socks5 code.
...
Fixed small but critical bug in rules matching/IP comparison.
8 years ago