Releases: evilsocket/opensnitch
v1.6.0
gustavo-iniguez-goya
Gustavo Iñiguez Goia
6e61958
gustavo-iniguez-goya
Gustavo Iñiguez Goia
What's new
- Added option to manage system firewall rules and policies from the GUI: https://github.com/evilsocket/opensnitch/wiki/System-rules
- Added option to integrate the daemon with SIEM systems: https://github.com/evilsocket/opensnitch/wiki/SIEM-integration
- Better and more reliable way of obtaining processes' names, paths and application icons.
- Better integration with system's stub resolvers/DNS client libraries.
- New rules filtering options: filter connections by more protocols, network interface, source port/ip, etc.
- Allow to export and import rules from the GUI.
What's Changed
- Better integration with Desktop Environments.
- Better nodes management.
- A lot of bugs fixed, and some new added (yet to be discovered).
For a more complete list of all the changes see the the v1.6.0-rc release series: https://github.com/evilsocket/opensnitch/releases
Known bugs
- Ubuntu 22.04, 22.10 / LinuxMint 21.x users: See this comment after installing the GUI: #647 (comment))
Downloads
Packages signed with the following GPG key: F34016AC014BAAF8C90AC730141D0D4E9FF44A67
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
Other arquitectures
GUI
IMPORTANT NOTES:
Ubuntu 22.04 / LinuxMint 21.x users: See this comment after installing the GUI: #647 (comment))
If you experience crashes clicking on the pop-ups: launch the GUI as follow:
$ QT_QPA_PLATFORM=xcb opensnitch-ui
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
New Contributors since v1.5.2
- @staticssleever668 made their first contribution in #608
- @markozajc made their first contribution in #610
- @calesanz made their first contribution in #582
- @cinerea0 made their first contribution in #625
- @JeremyMahieu made their first contribution in #666
- @nberlee made their first contribution in #684
- @0xphk made their first contribution in #740
- @szimszon made their first contribution in #769
- @craftyguy made their first contribution in #780
- @JohnBlood made their first contribution in #802
- @SpencerIsGiddy made their first contribution in #827
- @Timur13240 made their first contribution in #842
- @psydbernz made their first contribution in #869
- @NRGLine4Sec made their first contribution in #870
- @154pinkchairs made their first contribution in #900
- @davide125 made their first contribution in #943
- @lahdekorpi made their first contribution in #948
- @lainedfles made their first contribution in #958
Full Changelog: v1.5.2...v1.6.0
Contributors
Assets 19
v1.6.0-rc.5
gustavo-iniguez-goya
Gustavo Iñiguez Goia
df5fe3b
gustavo-iniguez-goya
Gustavo Iñiguez Goia
NOTE: this version is still WIP, so be aware that it may contain bugs. If you install it, we would greatly appreciate it if you could report any issues you encounter to help us improve the software. Your feedback is invaluable !
What's new
- Allow to apply and preview themes without restarting the GUI. afc3fb8
- Added Quit menu to close the GUI. 4cf41cc
- Added option to colorize rows. cba52cf
- New Norwegian language thanks to Petter Reinholdtsen. 846b1c5
- Better integration with software centers and Desktop Environments thanks to Petter Reinholdtsen. 156e936 2c9da76 c4a9a98
What's Changed
-
Fixed error adding interception rules on old kernels (4.x). 9dfcca2
-
Several translations updated.
-
Added publication by @JohnBlood in #802
-
Added copyright and license header to daemon/main.go and ui/bin/opensnitch-ui. by @petterreinholdtsen in #817
-
Upgrade chameleons url to https by @giddygoatgaming in #827
-
Bump workflow actions by @giddygoatgaming in #828
-
Remove unused parameters by @giddygoatgaming in #829
-
Replace docs link in opensnitchd.service by @Timur13240 in #842
New Contributors
- @JohnBlood made their first contribution in #802
- @giddygoatgaming made their first contribution in #827
- @Timur13240 made their first contribution in #842
- @petterreinholdtsen Petter Reinholdtsen in #817
Full Changelog: v1.6.0-rc.4...v1.6.0-rc.5
Downloads
Packages signed with a new key: https://keyserver.ubuntu.com/pks/lookup?search=F34016AC014BAAF8C90AC730141D0D4E9FF44A67&fingerprint=on&op=index
(use dpkg-sig -k ... *.deb to verify deb signatures.)
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
Other arquitectures
GUI
IMPORTANT NOTES:
- Ubuntu 22.04 users: See this comment 👉 after installing the GUI: #647 (comment))
- If you experience crashes on Wayland 👉 launch the GUI as follow:
$ QT_QPA_PLATFORM=xcb opensnitch-ui
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
Contributors
Assets 18
v1.6.0-rc.4
gustavo-iniguez-goya
Gustavo Iñiguez Goia
ba5208e
gustavo-iniguez-goya
Gustavo Iñiguez Goia
NOTE: this version is still WIP, so be aware that it may contain bugs. If you install it, we would greatly appreciate it if you could report any issues you encounter to help us improve the software. Your feedback is invaluable !
What's new
- Added initial support for ICMP and SCTP (#714) (Note: We still need to add it to eBPF).
- Added the ability to manage nodes individually, including options to export/import rules, stop/start daemon and delete a node.
- Added options to export / import rules (#326 #746)
- Added options to copy rules to the clipboard.
What's Changed
Many GUI improvements:
-
Now the views are only refreshed when the scrollbar is at the top or bottom of the view, or while scrolling up/down.
-
Rows selection is preserved when scrolling/refreshing the views, making it easier to analyze logs (somehow restoring the old good behaviour added by themighty1 that we lost some time ago).
-
CTRL-C now copies all the rows (with filters applied) if they're selected with CTRL+A.
-
All columns of the Events view are clickable.
-
daemon/Makefile: improvements to make distro packaging easier by @craftyguy in #780
Bug fixes
- nftables:
- GUI: mostly fixes related to firewall dialogs and nodes. Also fixed some regressions.
New Contributors
- @craftyguy made their first contribution in #780
Special thanks
To all of you who have reported bugs.
Full Changelog: v1.6.0-rc.3...v1.6.0-rc.4
Downloads
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
Other arquitectures
GUI
IMPORTANT NOTES:
-
Ubuntu 22.04 users: See this comment after installing the GUI: #647 (comment))
-
If you experience crashes clicking on the pop-ups: launch the GUI as follow:
$ QT_QPA_PLATFORM=xcb opensnitch-ui
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
v1.6.0-rc.3
gustavo-iniguez-goya
Gustavo Iñiguez Goia
1775da2
gustavo-iniguez-goya
Gustavo Iñiguez Goia
NOTE: this version is still WIP, so bear in mind that it may have bugs. If you install it, please, report any problems and help us to improve it, your feedback is invaluable !
What's new
- Added option to send alerts/messages to the server/GUI (477e6aa).
Note: You may see some alerts that were already happening, mainly related to eBPF and custom/hardened kernels. - Allow to filter connections by network interface (#726, 4a0f7a3)
- eBPF modules compilation automated for x86_64 architecture (at the bottom of the page)
For version 1.6.x and kernel >= 5.19
For version 1.6.x and kernel < 5.19
What's changed
-
System firewall (nftables) improvements and new features:
- Allow to create complex rules from the GUI, hopefully in an easy manner (c28643d)
- Allow to apply quotas on connections (not apps) (97b141e)
- Allow to apply rate-limits on connections (not apps) (7fcf864)
- Allow to filter by IP protocols, IP addresses, UID/GID, packet metainformation (f0a9d02,
09ec869, b8d6ead, fc96b24) - Added helpers to allow inbound or outbound connections (i.e.: preconfigured rules to exclude a service/application from being intercepted) (814ed52)
-
Better and more capable processes interception (7cbfca6, c64b2df, 1a493b9) Related: #736
-
Privacy/Security enhanced: Rules files saved with restrictive permissions, allow to configure GUI's unix socket path (736c3f9, 915b325, 820e7d5)
-
eBPF modules are loaded from /usr/lib/opensnitchd/ebpf/ now, to avoid errors upgrading them (474a637)
-
Bug fixes.
Full Changelog: v1.6.0-rc.2...v1.6.0-rc.3
New Contributors
Downloads
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
Other arquitectures
GUI
(IMPORTANT NOTE (Ubuntu 22.04 users): See this comment after installing the GUI: #647 (comment))
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
Contributors
Assets 18
v1.5.2
(update 16/12/2022: rpm packages reuploaded. Signed with gpg key - #776)
What's changed
- daemon: fixed mem leak when connecting to the GUI (2a6afcb)
- daemon: mount debugfs if it's not mounted, in order to use eBPF (ecc743e)
- GUI: improved displaying the events window (4ab4fbf)
- GUI: fixed notifications initialization (df5c097)
- GUI: improved quitting from the app (ce9e195)
- GUI: improved regular expressions for process path and command line (1226751)
Full Changelog: v1.5.1...v1.5.2
Downloads
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
GUI
(IMPORTANT NOTE (Ubuntu 22.04 / LinuxMint 21 users): See this comment after installing the GUI: #647 (comment))
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
v1.6.0-rc.2
NOTE: this version is still WIP, so bear in mind that it may have bugs. If you install it, please, report any problems and help us to improve it, your feedback is invaluable :)
What's Changed
-
ebpf: improved process detection/new events module (#617)
- also: get absolute path to a binary and cmdline arguments from kernel. Only available for kernels >= 5.5.
- Special thanks to @pizzadude and @Pheidologeton for reporting errors and testing latest changes (#694)
-
Allow to exclude connections from the events (#691).
-
fw: support for icmpv6 nftables in system rules by @nberlee in #689
-
UI: Show message boxes on top of the other dialogs (#682)
-
UI: Improved shutting down (#677)
-
UI: other fixes and improvements (cfb1d64 #671 , 98ddd01, e1ed51e, 1b28fad)
New Contributors
Full Changelog: v1.6.0-rc.1...v1.6.0-rc.2
Downloads
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
GUI
(IMPORTANT NOTE (Ubuntu 22.04 users): See this comment after installing the GUI: #647 (comment))
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
Contributors
Assets 18
v1.6.0-rc.1
What's new
-
Added option to configure system firewall (nftables) from the GUI (d9e0c59):
- Apply global policies (for example: drop input while allowing output traffic).
- Add exclusiones graphically (for example to allow certain services like VPN)
- Open ports when the default policy is DROP.
The GUI doesn't allow yet to configure all the options. However you can edit the configuration file manually if you need to, it's a quite complete frontend to nftables.
Documentation: https://github.com/evilsocket/opensnitch/wiki/System-rulesPlease, note that this is a WIP feature. If you find any bug, please open a new issue, or drop a comment in this post: #592 thank you!
-
Added option to send events to Syslog (7b610c0):
Also a WIP feature. If you find any bug, please open a new issue, or drop a comment in this post: #638 thank you!
-
Add eBPF based DNS lookup hooks (a4b7f57) by @calesanz !
- Fixed loading uprobes when libc has the symbols stripped @JeremyMahieu
What's changed
- Better DE integration: b49de30
- There's a new rule field (Description), which you can use to describe what a rule does (3c524c1). The rules view now only displays the relevant fields.
- Fix a minor typo by @markozajc in #610
- Add systemd-resoved listener by @calesanz in #582
- Allow building on systems using musl by @cinerea0 in #625
- Allow to configure firewall rules from the GUI by @gustavo-iniguez-goya in #660
- Fixes attachment of dns uprobes when libc is stripped of symbol names by @JeremyMahieu in #666
New Contributors
- @markozajc made their first contribution in #610
- @calesanz made their first contribution in #582
- @cinerea0 made their first contribution in #625
- @JeremyMahieu made their first contribution in #666
Full Changelog: v1.5.0...v1.6.0-rc.1
Downloads
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
GUI
(IMPORTANT NOTE (Ubuntu 22.04 users): See this comment after installing the GUI: #647 (comment))
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
[21/06/2022 11:00 NOTE: GUI packages regenerated because of this #671 ]
Contributors
Assets 17
v1.5.1
What's new
- Allow to customize GUI theme. c20f1c1
You'll need to install qt-material from pip:$ pip3 install qt-material
What's changed
- New app icon for better visibility 79c48ed
- fixed launching the GUI on LxQt 9cb5bc9
- UX fixes and improvements: a673464 , 1161c57 , 9ff920f , a5de709 , 9045e28 , 9c36bb3 , ccc18c8 , c67e720
- Exclude the address
::1from the DNS cache bbe6c72 - Improved nftables rules handling.
Full Changelog: v1.5.0...v1.5.1
Downloads
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
GUI
(IMPORTANT NOTE (Ubuntu 22.04 users): See this comment after installing the GUI: #647 (comment))
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
v1.5.0
What's new
- Better in-kernel connections interception (WireGuard, IP tunnels, NFS and SMB connections, ..) - 0526b84
- Added Reject action. Improves user experience in some situations, like when blocking ads or trackers. - 8d3540f
- Use system notifications to display alerts - 843412d
- More flexbility to block ads, trackers or malware domains system wide - 3b6c041 - learn more
- Support for SysV based init systems like Devuan - 91ff72b
What's changed
- Improved connections parsing - 479b8de
- Improved eBPF subsystem - 7c87baf
- Improved GUI user experience:
- Better key navigation - 434bbf9
- Better rules handling - #560
- Improved performance when saving events to a DB on disk - #565 , #566 , 75cfd39 , deee72a
- Allow to limit the numbers of connections saved to the DB.
- Allow to apply filters in all views, as well as in detail views.
- Better multiple nodes support - 5d6121b , #576
- Added help button, to display a quick help.
- The Address view will display the Network Name (ASN) if the package python3-pyasn is installed - 42b8774
- Allow to copy selected rows to clipboard.
- Regression: The Events view is not as performant as before. We'll have to work on that area.
Misc
- More unit tests for GUI and daemon.
- Fixed several GUI crashes.
Known bugs
- On lxQt, the GUI is not launched from the system menu.
- On Ubuntu 22.04, the GUI never appears. See this comment to work around this problem: #647 (comment)
Contributors ❤️
@ryanolton @staticssleever668 @Scrumplex @tioguda @themighty1 @BobSquarePants @bob04619 @wsgcsysadmin @Shadow505 @alexholox @Natrinicle @chicagoo17 @pizzadude @NRGLine4Sec and others.
Full Changelog: v1.4.0...v1.5.0
Downloads
daemon
(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
GUI
(IMPORTANT NOTE (Ubuntu 22.04 users): See this comment after installing the GUI: #647 (comment))
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)
Contributors
Assets 15
v1.5.0-rc.2
What's Changed
UI
- Improved performance and fixed many issues (#560 , #565 , #576)
- Saving events to a DB on disk is much better now. You can also select how many days to keep.
- Fixed some crashes.
- Use system notifications to display alerts - 843412d (#468, #476, #477)
- Pop-ups: some improvements - 7006604 - 9e53997
Daemon
- Fixed an issue that caused falling back to use ProcFS procs monitor method - 7c87baf
Misc
- Fixed error installing on SysVinit based systems (devuan, #558) - 91ff72b
- Update translation by @tioguda in #578
- Add Repology badge to README by @Scrumplex in #586
Full Changelog: v1.5.0-rc.1...v1.5.0-rc.2
Downloads
daemon
(Note: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)
GUI
(If the above packages complain about dependencies, use these ones)
- deb - for old distributions (Ubuntu <= 18.04)
- rpm - for old distributions (Fedora < 29)