vikarti.anatra/safing-portmaster
1
0
Fork 0
mirror of https://github.com/safing/portmaster synced 2025-09-04 19:49:15 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Allow --data to be specified via environment variable PORTMASTER_DATA

Browse source
This commit is contained in:
ppacher 2020-04-06 09:08:58 +02:00
parent 2987100c07
commit 4e5a18b93d
2 changed files with 31 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

33
README.md
View file

@ -24,28 +24,35 @@ The main way to configure the application firewall is by configuring application
You can also see what is going on right now. The monitor page in the app lets you see the network like the Portmaster sees it: `Communications` represent a logical connection between a program and a domain. These second level objects group `Links` (physical connections: IP->IP) together for easier handling and viewing. You can also see what is going on right now. The monitor page in the app lets you see the network like the Portmaster sees it: `Communications` represent a logical connection between a program and a domain. These second level objects group `Links` (physical connections: IP->IP) together for easier handling and viewing.
The Portmaster consists of three parts: The Portmaster consists of three parts:
- The _core_ (ie. the _daemon_) that runs as an administrator and does all the work. (`sudo ./pmctl run core --db=/opt/pm_db`) - The _core_ (ie. the _daemon_) that runs as an administrator and does all the work. (`sudo ./pmctl run core --data=/opt/pm_db`)
- The _app_, a user interface to set preferences, monitor apps and configure application profiles (`sudo ./pmctl run app --db=/opt/pm_db`) - The _app_, a user interface to set preferences, monitor apps and configure application profiles (`sudo ./pmctl run app --data=/opt/pm_db`)
- The _notifier_, a little menu/tray app for quick access and notifications (`sudo ./pmctl run notifier --db=/opt/pm_db`) - The _notifier_, a little menu/tray app for quick access and notifications (`sudo ./pmctl run notifier --data=/opt/pm_db`)
If you want to know more, here are [the docs](http://docs.safing.io/). If you want to know more, here are [the docs](http://docs.safing.io/).
#### Installation #### Installation
The `pmctl` command will help you get up and running. It will bootstrap your the environment and download additional files it needs. All commands need the `--db` parameter with the database location, as this is where all the data and also the binaries live. The `pmctl` command will help you get up and running. It will bootstrap your the environment and download additional files it needs. All commands need the `--data` parameter with the database location, as this is where all the data and also the binaries live.
Just download `pmctl` from the [releases page](https://github.com/safing/portmaster/releases) and put it somewhere comfortable. You may freely choose where you want to put the database - it needs to be the same for all commands. Here we go - run every command in a seperate terminal window: Just download `pmctl` from the [releases page](https://github.com/safing/portmaster/releases) and put it somewhere comfortable. You may freely choose where you want to put the database - it needs to be the same for all commands. Here we go - run every command in a seperate terminal window:
# start the portmaster: ```bash
sudo ./pmctl run core --db=/opt/pm_db # Either export the PORTMASTER_DATA environment variable or add
# this will add some rules to iptables for traffic interception via nfqueue (and will clean up afterwards!) # --data=/opt/pm_db to all commands below. If you use pmctl a
# already active connections may not be handled correctly, please restart programs for clean behavior # lot you may move the export line to your ~/.bashrc
export PORTMASTER_DATA=/opt/pm_db
# then start the app: # start the portmaster:
./pmctl run app --db=/opt/pm_db sudo ./pmctl run core
# this will add some rules to iptables for traffic interception via nfqueue (and will clean up afterwards!)
# already active connections may not be handled correctly, please restart programs for clean behavior
# and the notifier: # then start the app:
./pmctl run notifier --db=/opt/pm_db ./pmctl run app
# and the notifier:
./pmctl run notifier
```
#### Feedback #### Feedback
@ -76,7 +83,7 @@ Documentation _in progress_ can be found here: [docs.safing.io](http://docs.safi
- libnetfilter_queue development files - libnetfilter_queue development files
- debian/ubuntu: `sudo apt-get install libnetfilter-queue-dev` - debian/ubuntu: `sudo apt-get install libnetfilter-queue-dev`
- fedora: `?` - fedora: `?`
- arch: `?` - arch: `sudo pacman -S libnetfilter_queue`
## TCP/UDP Ports ## TCP/UDP Ports

15
pmctl/main.go
View file

@ -61,12 +61,12 @@ func init() {
// Let cobra ignore if we are running as "GUI" or not // Let cobra ignore if we are running as "GUI" or not
cobra.MousetrapHelpText = "" cobra.MousetrapHelpText = ""
rootCmd.PersistentFlags().StringVar(&dataDir, "data", "", "set data directory") rootCmd.PersistentFlags().StringVar(&dataDir, "data", "", "Configures the data directory. It's also possible to configure the PORTMASTER_DATA environment variable.")
rootCmd.PersistentFlags().StringVar(&databaseDir, "db", "", "alias to --data (deprecated)") rootCmd.PersistentFlags().StringVar(&databaseDir, "db", "", "Alias to --data (deprecated)")
_ = rootCmd.MarkPersistentFlagDirname("data") _ = rootCmd.MarkPersistentFlagDirname("data")
_ = rootCmd.MarkPersistentFlagDirname("db") _ = rootCmd.MarkPersistentFlagDirname("db")
rootCmd.Flags().BoolVar(&showFullVersion, "version", false, "print version") rootCmd.Flags().BoolVar(&showFullVersion, "version", false, "Print version of portmaster-control.")
rootCmd.Flags().BoolVar(&showShortVersion, "ver", false, "print version number only") rootCmd.Flags().BoolVar(&showShortVersion, "ver", false, "Print version number only")
} }
func main() { func main() {
@ -149,6 +149,13 @@ func cmdSetup(cmd *cobra.Command, args []string) (err error) {
if dataDir == "" { if dataDir == "" {
dataDir = databaseDir dataDir = databaseDir
} }
// check for environment variable
// PORTMASTER_DATA
if dataDir == "" {
dataDir = os.Getenv("PORTMASTER_DATA")
}
// check data dir // check data dir
if dataDir == "" { if dataDir == "" {
return errors.New("please set the data directory using --data=/path/to/data/dir") return errors.New("please set the data directory using --data=/path/to/data/dir")