shw
b567e5ce54
oz-init pid mappings are now properly destroyed as these processes exit.
8 years ago
shw
a930fbbce0
Sandboxed process entries in GUI now include sandbox name/ID in display.
...
Removed fatal error when a connection to oz-control socket cannot be established.
8 years ago
shw
ba35abfb46
Name of sandboxed exe returned by procsnitch is now resolved to absolute pathname.
8 years ago
shw
b4ed11261f
Added extra display info for "Sandboxed application" in fw-prompt gnome shell GUI.
...
fw-prompt GUI gracefully displays unknown PIDs and UIDs.
Fixed stupid syntax error bug in oz-init PID management code.
8 years ago
shw
7a1851419c
Added support for using fw-daemon on all processes system-wide.
...
Added changes for fw-daemon to check sandboxed processes' oz-init /proc/[pid]/net/tcp with procsnitch.
fw-daemon IPC accepts "register-init" command to register new oz-init process instance alerts.
fw-daemon also checks for existing oz-init processes on startup.
Updated vendor-bundled go-procsnitch to latest dev version that includes findTCPSocketAll().
8 years ago
shw
30482bf15b
Support for wildcard ports in dynamic OZ/fw rules.
...
Modified behavior for source interface-based rules to allow for fallthrough policies.
8 years ago
shw
e1a994169f
Added removeall IPC command for stripping all rules matching a source interface.
8 years ago
shw
670abc5232
Removed code for custom matching of firewall rules.
8 years ago
shw
9069c91606
Garbage dump commit of current progress.
8 years ago
shw
08266cca76
Support for handling network traffic that can't be uncovered with procsnitch.
8 years ago
shw
cadb859dce
Added ephemeral oz sandbox/fw-daemon rules that can be updated via IPC connection.
...
fw-daemon prompter is now updated with source address of originating packet.
Fixed bug in decoding DNS data.
Packets are dropped properly (by marking and then calling Accept()).
8 years ago
shw
942b0a0c01
Bug fix.
8 years ago
shw
8fe02202de
Very dirty/experimental replacement of nfqueue with native github.com/subgraph/go-nfnetlink package.
8 years ago
shw
4955c6a66b
Added (unused) origin field in firewall gnome-shell UI.
...
Added some instructions.
8 years ago
shw
1e84a6e168
Reincorporated socks5 code.
...
Fixed small but critical bug in rules matching/IP comparison.
8 years ago
xSmurf
90bbc67517
Linting...
8 years ago
xSmurf
02155c44ed
Golint...
8 years ago
xSmurf
c5b8dcb660
Golint..
8 years ago
xSmurf
2e6f98e410
FMT...
8 years ago
xSmurf
5d4b38c5b4
Refactor...
8 years ago
xSmurf
4b632fb6f2
Moved fw-daemon to command/lib
8 years ago
xSmurf
9c8f5895ca
Moved all to sgfw
8 years ago