vikarti.anatra/safing-portmaster
1
0
Fork 0
mirror of https://github.com/safing/portmaster synced 2025-09-02 02:29:12 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
550 commits 104 branches 207 tags 52 MiB
Commit graph

107 commits

Author SHA1 Message Date
Daniel
2de354e482 Fix IPv6 to local redirects 2020-08-14 11:25:16 +02:00
Daniel
9d35ff3192 Fix and improve network listener system integration and check 
Also, improve logging.
 2020-08-12 14:33:09 +02:00
Daniel
5c71873e00
Merge pull request #124 from safing/fix/lms-scoring 
Move LMS scoring from nameserver to firewall
 2020-08-11 16:18:33 +02:00
Patrick Pacher
c229031521
Retext block reason in domain heuristics 2020-08-11 15:45:32 +02:00
Patrick Pacher
3b896ee892
Move LMS scoring under new Domain Heuristics 2020-08-11 15:37:24 +02:00
Patrick Pacher
8840c88903
Fix linter warnings on windows 2020-08-11 15:34:29 +02:00
Patrick Pacher
85e4beafa1
Move LMS scoring from nameserver to firewall 2020-08-11 10:28:05 +02:00
Daniel
2643a90582 Fix multierror handling 2020-08-10 23:13:42 +02:00
Daniel
cdec623033 Add SPN integration 2020-08-06 21:36:43 +02:00
Patrick Pacher
071f2a9bd5
Silience "not found" errors in recover-iptables 2020-08-04 13:14:09 +02:00
Patrick Pacher
4d56752989
Use NextHeader as a fallback for unknown IPv6 protocols 2020-07-31 15:15:38 +02:00
Safing
9639775ad7
Fix IPv6 connection handling and refactor packet parsing 2020-07-31 14:32:18 +02:00
Patrick Pacher
0451e99431
Add experimental nfqueue interception backend 
This commit adds a new experimental nfqueue interception
backed based on github.com/florianl/go-nfqueue. It should
add more stability to the interception of network packets
and also eliminates the CGO and the runtime dependency on
libnetfilter_queue. Note that this commit does not remove
the old nfqueue backend yet but adds a --experimental-nfqueue
flag to portmaster-core.
 2020-07-30 08:35:27 +02:00
Patrick Pacher
9eb7195bd8
Try as hard as possible to remove the nfqueue rules 2020-07-22 15:11:41 +02:00
Patrick Pacher
7690793c66
Add recover-iptables sub-comment. Fixes #6 2020-07-22 15:11:41 +02:00
Daniel
17af628f9a Add no-op default interception interface 
This enables building for unsupported platforms
 2020-07-22 09:36:53 +02:00
Daniel
0a68b81005 Add flag to disable packet interception 2020-07-22 09:35:58 +02:00
Daniel
811516eec8 Update captive portal detection to work without server 2020-07-21 14:56:06 +02:00
Daniel
68c2d23c1b Fix handling of connectivity / captive portal domains 
Also, improve handling of queries during being captive.
 2020-07-17 16:09:46 +02:00
Daniel
e369a9484a Improve captive portal handling 2020-07-15 08:53:55 +02:00
Daniel
e1d39e88ba Improve logging 2020-06-05 14:00:51 +02:00
Daniel
625b79e3b3 Detect PID loops in api auth 2020-06-05 14:00:44 +02:00
Daniel
e442baddb6 Fix and improve authentication retrying and error messages 2020-06-04 17:15:25 +02:00
Daniel
e5ad87a585 Increase resilience of api auth by waiting long and trying more often 
Also, improve messages sent to user.
 2020-06-03 21:21:34 +02:00
Daniel
46411951f6 Further improve logging and messages 2020-05-20 16:43:54 +02:00
Daniel
26fd447700 Switch default action / asking to release level experimental 
There are, well, many problems...
 2020-05-20 15:36:11 +02:00
Daniel
4671535691 Improve logging 2020-05-20 15:35:22 +02:00
Daniel
7649859ba6 Switch connection state lookups to use the packet.Info struct 
Also, rename the Direction attribute on packet.Info to Inbound
 2020-05-18 17:08:32 +02:00
Daniel
886d30278f Fix IPv4 parsing from windows state tables 2020-05-16 22:43:42 +02:00
Daniel
635d5770d1 Change BlockInbound to only affect LAN and Internet 2020-05-15 17:18:42 +02:00
Daniel
c3ca0c4c84 Set dns redirects to Internal for better UX 2020-05-15 17:17:48 +02:00
Daniel
6e9c22d0b5 Stop whitelisting IGMP 2020-05-15 17:17:17 +02:00
Daniel
cb991e9f02 Fix and improve IP address conversion on windows 2020-05-15 17:16:08 +02:00
Daniel
55b0ae8944 Revamp process attribution of network connections 2020-05-15 17:15:22 +02:00
Daniel
6bb0ac2a95 Hotfix dependency issue, bump version 2020-05-02 23:27:04 +02:00
Daniel
ef2c9066ce Fix tests 2020-05-02 13:37:43 +02:00
Daniel
f4b8ad7d7c Fix tests: split core package into core and base 2020-05-02 13:24:31 +02:00
Patrick Pacher
972f8fcfc3
Merge pull request #44 from safing/feature/pre-alpha-finalizing 
Pre alpha finalizing
 2020-04-30 16:42:09 +02:00
Patrick Pacher
2dda3813fa
Let decision reasons decide on the DNS reply 2020-04-30 14:23:06 +02:00
Daniel
20e836b8ff Fix BlockP2P to only bock connections to the Internet 2020-04-30 14:15:10 +02:00
Daniel
fe7d146360 Switch from ACCEPT to RETURN when accepting a packet/connection with iptables 
This will ensure the Portmaster will not circumvent existing firewall rules.
 2020-04-24 10:58:39 +02:00
Daniel
5209a090c4 Update config options, add options to turn off system notifications 2020-04-24 10:55:49 +02:00
Daniel
95041d217c Fix module dependencies, split filter into interception and filter modules 2020-04-24 10:17:15 +02:00
Daniel
e262ad1db9 Update config and add ordering 2020-04-21 15:02:17 +02:00
Patrick Pacher
a07c36159b
Minor bug fix 2020-04-21 10:17:20 +02:00
Patrick Pacher
f2e41a0d32
Refactoring of FilterDNSResponse and DecideOnConnection 2020-04-21 10:17:16 +02:00
Patrick Pacher
8c5526a69b
Add support for verdict and decision reason context 2020-04-21 10:16:32 +02:00
Patrick Pacher
1f90c05654
Merge pull request #39 from safing/feature/unidentified-process-and-profile 
Add support for unidentified processes and profiles
 2020-04-21 10:15:11 +02:00
Daniel
a33808685c Implement review suggestions 2020-04-20 13:57:07 +02:00
Daniel
033dceab5b Add support for unidentified/system processes/profiles 2020-04-17 21:52:06 +02:00