OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.5...v1.6.5.1
Note: if you're using the GUI with multiple remote nodes, use these GUI packages https://github.com/evilsocket/opensnitch/releases/tag/v1.6.5.1
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.4...v1.6.5
You need to download the daemon and the GUI.
(NOTE: if the daemon doesn't autostart, enable it: ~ $ sudo systemctl enable --now opensnitch.service
)
IMPORTANT NOTES:
Ubuntu 22.04 / PopOS! 22.x / LinuxMint 21.x users: See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)
If you experience crashes on Wayland clicking on the pop-ups: launch the GUI as follow:
~ $ QT_QPA_PLATFORM=xcb opensnitch-ui
GUI bug fix release.
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.3...v1.6.4
You need to download the daemon and the GUI.
(NOTE: if the daemon doesn't autostart, enable it: ~ $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
IMPORTANT NOTES:
Ubuntu 22.04 / PopOS! 22.x / LinuxMint 21.x users: See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)
If you experience crashes on Wayland clicking on the pop-ups: launch the GUI as follow:
~ $ QT_QPA_PLATFORM=xcb opensnitch-ui
Only GUI packages updated.
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.2...v1.6.3
Packages signed with the following GPG key: F34016AC014BAAF8C90AC730141D0D4E9FF44A67
(NOTE: if the daemon doesn't autostart, enable it: ~ $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
IMPORTANT NOTES:
Ubuntu 22.04 / PopOS! 22.x / LinuxMint 21.x users: See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)
If you experience crashes clicking on the pop-ups: launch the GUI as follow:
~ $ QT_QPA_PLATFORM=xcb opensnitch-ui
[updated 07/10/2023] readme.txt.asc updated to reflect the correct checksums. The .deb/.rpm files are signed individually after being built, thus the checksums changes. [updated 29/11/2023] readme.txt.asc and rpm packages resigned with the proper key (#1067).
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.1...v1.6.2
Packages signed with the following GPG key: F34016AC014BAAF8C90AC730141D0D4E9FF44A67
(NOTE: if the daemon doesn't autostart, enable it: ~ $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
IMPORTANT NOTES:
Ubuntu 22.04 / PopOS! 22.x / LinuxMint 21.x users: See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)
If you experience crashes clicking on the pop-ups: launch the GUI as follow:
~ $ QT_QPA_PLATFORM=xcb opensnitch-ui
The configuration files default-config.json
and system-fw.json
have been updated to add new items/options.
When installing the deb packages, apt will prompt you to allow the new versions, or keep the ones you already have.
None of the new changes are mandatory, so you don't need to update them. But please, review the changes, and decide if apply them.
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.0...v1.6.1
Packages signed with the following GPG key: F34016AC014BAAF8C90AC730141D0D4E9FF44A67
(NOTE: if the daemon doesn't autostart, enable it: ~ $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
IMPORTANT NOTES:
Ubuntu 22.04 / LinuxMint 21.x users: See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)
If you experience crashes clicking on the pop-ups: launch the GUI as follow:
~ $ QT_QPA_PLATFORM=xcb opensnitch-ui
For a more complete list of all the changes see the the v1.6.0-rc release series: https://github.com/evilsocket/opensnitch/releases
Packages signed with the following GPG key: F34016AC014BAAF8C90AC730141D0D4E9FF44A67
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
IMPORTANT NOTES:
Ubuntu 22.04 / LinuxMint 21.x users: See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)
If you experience crashes clicking on the pop-ups: launch the GUI as follow:
$ QT_QPA_PLATFORM=xcb opensnitch-ui
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.5.2...v1.6.0
NOTE: this version is still WIP, so be aware that it may contain bugs. If you install it, we would greatly appreciate it if you could report any issues you encounter to help us improve the software. Your feedback is invaluable !
Fixed error adding interception rules on old kernels (4.x). 9dfcca295a4ad32253b6309fe6f87d52b937850a
Several translations updated.
Fixed interceptUnknown behaviour. e44e1468b89adf415ede27c333800887a6d3d14a (#853)
Better icons on GNOME/Fedora. 71c734c0d6dc440289de1e852147753e27d7e496 ea5adfb05a7d7a6cb691ef989a4faf5848b730b5
Improvements on Wayland. 5264988a3608f8359a71977b527c36848445dc5b e952f73e186989bf2691b71297c48451dfb17db1
Added publication by @JohnBlood in https://github.com/evilsocket/opensnitch/pull/802
Added copyright and license header to daemon/main.go and ui/bin/opensnitch-ui. by @petterreinholdtsen in https://github.com/evilsocket/opensnitch/pull/817
Upgrade chameleons url to https by @GiddyGoatGaming in https://github.com/evilsocket/opensnitch/pull/827
Bump workflow actions by @GiddyGoatGaming in https://github.com/evilsocket/opensnitch/pull/828
Remove unused parameters by @GiddyGoatGaming in https://github.com/evilsocket/opensnitch/pull/829
Replace docs link in opensnitchd.service by @Timur13240 in https://github.com/evilsocket/opensnitch/pull/842
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.0-rc.4...v1.6.0-rc.5
Packages signed with a new key: https://keyserver.ubuntu.com/pks/lookup?search=F34016AC014BAAF8C90AC730141D0D4E9FF44A67&fingerprint=on&op=index
(use dpkg-sig -k ... *.deb
to verify deb signatures.)
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
IMPORTANT NOTES:
$ QT_QPA_PLATFORM=xcb opensnitch-ui
NOTE: this version is still WIP, so be aware that it may contain bugs. If you install it, we would greatly appreciate it if you could report any issues you encounter to help us improve the software. Your feedback is invaluable !
Many GUI improvements:
Now the views are only refreshed when the scrollbar is at the top or bottom of the view, or while scrolling up/down.
Rows selection is preserved when scrolling/refreshing the views, making it easier to analyze logs (somehow restoring the old good behaviour added by themighty1 that we lost some time ago).
CTRL-C now copies all the rows (with filters applied) if they're selected with CTRL+A.
All columns of the Events view are clickable.
daemon/Makefile: improvements to make distro packaging easier by @craftyguy in https://github.com/evilsocket/opensnitch/pull/780
To all of you who have reported bugs.
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.0-rc.3...v1.6.0-rc.4
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
IMPORTANT NOTES:
Ubuntu 22.04 users: See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)
If you experience crashes clicking on the pop-ups: launch the GUI as follow: $ QT_QPA_PLATFORM=xcb opensnitch-ui
NOTE: this version is still WIP, so bear in mind that it may have bugs. If you install it, please, report any problems and help us to improve it, your feedback is invaluable !
System firewall (nftables) improvements and new features:
Better and more capable processes interception (7cbfca6b1f4092c51467b0ec91f1e616216abe3f, c64b2df03c9f68446834d8d2857693ab8fcea3c9, 1a493b9da1d1959f302dd6e2bc2ec8b78ffed7f8) Related: #736
Privacy/Security enhanced: Rules files saved with restrictive permissions, allow to configure GUI's unix socket path (736c3f9c517b10217db0b30fd29897fee6b6874a, 915b325a00b955d781554fb5d1f8337908ca7f3d, 820e7d5fe9d1a35ca780b7421b1d257fe441f9a1)
eBPF modules are loaded from /usr/lib/opensnitchd/ebpf/ now, to avoid errors upgrading them (474a6373cf890ad5781eb1c1c9c2c3e2e9a0a40c)
Bug fixes.
Full Changelog: https://github.com/evilsocket/opensnitch/compare/v1.6.0-rc.2...v1.6.0-rc.3
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch
)
(IMPORTANT NOTE (Ubuntu 22.04 users): See this comment after installing the GUI: https://github.com/evilsocket/opensnitch/issues/647#issuecomment-1090545284)