Faking responses? #531
Replies: 3 comments
-
|
Hi @mariomadproductions , I think a factible feature would be to put a mark on packets of an application, and apply whatever rule you want to that mark: reject, drop, redirect, etc... Conceptually it seems to be very easy, but I haven't had time to make a PoC yet. It was requested in that issue, yes. faking responses much more work. It would require to modify packets, and in the scenario you mentioned, knowing how the application works to reply the answer it requires.
Do you have an example of this problem? If so I'd like to know what app it is. Sometimes we cause apps to crash, like transmission some versions ago. |
Beta Was this translation helpful? Give feedback.
-
|
RomVault (running with mono) is slow to start if you deny its connections. In this case I don't mind allowing the connections too much, but it may be something that happens with other apps too. |
Beta Was this translation helpful? Give feedback.
-
|
ok, I see. Yes, that's also a pretty common problem when blocking ads/malware urls: #481 It'll be included in the next RC version that I hope to release soon. |
Beta Was this translation helpful? Give feedback.
-
Would it make sense for OpenSnitch sto have the ability to "fake" responses to software (as some software misbehaves if it can't connect to a server)? Or would it make more sense for OpenSnitch to instead have a "redirect" option, where it sends the request to your own server that is designed to imitate the real server? I'm just asking as I was going to open a feature request issue for the former, but I wasn't sure if it really made sense.
Edit: Seems like #437 is a feature request for the latter?
Beta Was this translation helpful? Give feedback.
All reactions