ItsDrike/dotfiles
1
0
Fork 0
mirror of https://github.com/ItsDrike/dotfiles.git synced 2024-09-19 21:29:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update opensnitch rules

Browse source
This commit is contained in:
ItsDrike 2021-03-26 15:12:08 +01:00
parent 120b8be17e
commit 034fab33d4
No known key found for this signature in database
GPG key ID: 252D306F545351FC
62 changed files with 506 additions and 243 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
root/etc/opensnitchd/rules/0 - Global Allow.json Normal file
View file

@ -0,0 +1,16 @@
{
"created": "2021-03-26T14:38:21.237148571+01:00",
"updated": "2021-03-26T14:38:21.237217606+01:00",
"name": "0 - Global Allow",
"enabled": false,
"precedence": true,
"action": "allow",
"duration": "always",
"operator": {
"type": "regexp",
"operand": "process.path",
"sensitive": false,
"data": ".*",
"list": []
}
}

6
root/etc/opensnitchd/rules/1-Localhost.json → root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv4.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:43:07.677514842+01:00",
"updated": "2021-02-14T10:43:07.6775511+01:00",
"name": "1-Localhost",
"created": "2021-03-26T14:34:29.750639149+01:00",
"updated": "2021-03-26T14:34:29.750717553+01:00",
"name": "1 - Local Network 1: Loopback IPv4",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/1-Localhost (v6).json → root/etc/opensnitchd/rules/1 - Local Network 1: Loopback IPv6.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T17:48:04.098124196+01:00",
"updated": "2021-02-14T17:48:04.098183755+01:00",
"name": "1-Localhost (v6)",
"created": "2021-03-26T14:35:06.471042752+01:00",
"updated": "2021-03-26T14:35:06.471104722+01:00",
"name": "1 - Local Network 1: Loopback IPv6",
"enabled": true,
"precedence": false,
"action": "allow",

8
root/etc/opensnitchd/rules/1-Local Network.json → root/etc/opensnitchd/rules/1 - Local Network 2: IPv4.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:42:12.050595111+01:00",
"updated": "2021-02-14T10:42:12.050628273+01:00",
"name": "1-Local Network",
"created": "2021-03-26T13:55:13.918975568+01:00",
"updated": "2021-03-26T13:55:13.919048389+01:00",
"name": "1 - Local Network 2: IPv4",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "network",
"operand": "dest.network",
"sensitive": false,
"data": "192.168.0.0/16",
"data": "192.0.0.0/8",
"list": []
}
}

6
root/etc/opensnitchd/rules/1-Local Network (v6).json → root/etc/opensnitchd/rules/1 - Local Network 2: IPv6.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:42:24.423641366+01:00",
"updated": "2021-02-14T10:42:24.423678672+01:00",
"name": "1-Local Network (v6)",
"created": "2021-03-26T14:35:19.095504822+01:00",
"updated": "2021-03-26T14:35:19.095575256+01:00",
"name": "1 - Local Network 2: IPv6",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/1-Multicast.json → root/etc/opensnitchd/rules/1 - Local Network 3: Multicast.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T12:20:49.99614146+01:00",
"updated": "2021-02-14T12:20:49.996191714+01:00",
"name": "1-Multicast",
"created": "2021-03-26T14:35:34.624303764+01:00",
"updated": "2021-03-26T14:35:34.624381925+01:00",
"name": "1 - Local Network 3: Multicast",
"enabled": true,
"precedence": false,
"action": "allow",

12
root/etc/opensnitchd/rules/2-Cloudflare DNS.json → root/etc/opensnitchd/rules/2 - DNS 1: CloudFlare.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:42:40.336067077+01:00",
"updated": "2021-02-14T10:42:40.336185036+01:00",
"name": "2-Cloudflare DNS",
"created": "2021-03-26T14:05:47.752157095+01:00",
"updated": "2021-03-26T14:05:47.752306682+01:00",
"name": "2 - DNS 1: CloudFlare",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"1.1.1.1\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.ip\", \"data\": \"(1\\\\.1\\\\.1\\\\.1)|(1\\\\.0\\\\.0\\\\.1)\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.ip",
"sensitive": false,
"data": "1.1.1.1",
"data": "(1\\.1\\.1\\.1)|(1\\.0\\.0\\.1)",
"list": null
}
]

10
root/etc/opensnitchd/rules/2-Cloudflare DNS (Fallback).json → root/etc/opensnitchd/rules/2 - DNS 2: Local NameServer.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:42:55.286542479+01:00",
"updated": "2021-02-14T10:42:55.2866656+01:00",
"name": "2-Cloudflare DNS (Fallback)",
"created": "2021-03-26T14:11:37.6695327+01:00",
"updated": "2021-03-26T14:11:37.669693753+01:00",
"name": "2 - DNS 2: Local NameServer",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"1.0.0.1\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"192.168.0.1\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -30,7 +30,7 @@
"type": "simple",
"operand": "dest.ip",
"sensitive": false,
"data": "1.0.0.1",
"data": "192.168.0.1",
"list": null
}
]

6
root/etc/opensnitchd/rules/7 - Clord (color management daemon).json → root/etc/opensnitchd/rules/3 - Clord (color management daemon).json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:17:24.774744912+01:00",
"updated": "2021-03-01T21:17:24.774890683+01:00",
"name": "7 - Clord (color management daemon)",
"created": "2021-03-26T14:54:35.691185369+01:00",
"updated": "2021-03-26T14:54:35.691334733+01:00",
"name": "3 - Clord (color management daemon)",
"enabled": true,
"precedence": false,
"action": "allow",

12
root/etc/opensnitchd/rules/6-NetworkManager HTTPS.json → root/etc/opensnitchd/rules/3 - NetworkManager HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:45:22.230494605+01:00",
"updated": "2021-02-14T10:45:22.230663913+01:00",
"name": "6-NetworkManager HTTPS",
"created": "2021-03-26T14:25:45.324185722+01:00",
"updated": "2021-03-26T14:25:45.324300946+01:00",
"name": "3 - NetworkManager HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/NetworkManager\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/NetworkManager\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"data": "^(80|443)$",
"list": null
}
]

45
root/etc/opensnitchd/rules/3 - Resolver: Avahi Daemon (Multicast DNS).json Normal file
View file

@ -0,0 +1,45 @@
{
"created": "2021-03-26T14:32:52.844859434+01:00",
"updated": "2021-03-26T14:32:52.845014247+01:00",
"name": "3 - Resolver: Avahi Daemon (Multicast DNS)",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"udp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/avahi-daemon\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"5353\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.ip\", \"data\": \"^(ff02::fb|224\\\\.0\\\\.0\\\\.251)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "udp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/avahi-daemon",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "5353",
"list": null
},
{
"type": "regexp",
"operand": "dest.ip",
"sensitive": false,
"data": "^(ff02::fb|224\\.0\\.0\\.251)$",
"list": null
}
]
}
}

31
root/etc/opensnitchd/rules/3 - Resolver: Systemd Resolved (Unicast DNS).json Normal file
View file

@ -0,0 +1,31 @@
{
"created": "2021-03-26T14:36:45.353178364+01:00",
"updated": "2021-03-26T14:36:45.353306158+01:00",
"name": "3 - Resolver: Systemd Resolved (Unicast DNS)",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/systemd/systemd-resolved\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"53\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/lib/systemd/systemd-resolved",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "53",
"list": null
}
]
}
}

6
root/etc/opensnitchd/rules/4-Time Synchronization.json → root/etc/opensnitchd/rules/3 - Time Synchronization.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:43:58.03246195+01:00",
"updated": "2021-02-14T10:43:58.032565951+01:00",
"name": "4-Time Synchronization",
"created": "2021-03-26T14:31:12.698421478+01:00",
"updated": "2021-03-26T14:31:12.698577981+01:00",
"name": "3 - Time Synchronization",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/7 - Arch-Audit HTTPS.json → root/etc/opensnitchd/rules/4 - Arch-Audit HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:24:11.869179084+01:00",
"updated": "2021-03-01T21:24:11.86932645+01:00",
"name": "7 - Arch-Audit HTTPS",
"created": "2021-03-26T14:53:45.452433311+01:00",
"updated": "2021-03-26T14:53:45.452584115+01:00",
"name": "4 - Arch-Audit HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/7 - Curl HTTP+S.json → root/etc/opensnitchd/rules/4 - Curl HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:22:42.115763864+01:00",
"updated": "2021-03-01T21:22:42.115902561+01:00",
"name": "7 - Curl HTTP+S",
"created": "2021-03-26T14:52:55.594720808+01:00",
"updated": "2021-03-26T14:52:55.594848089+01:00",
"name": "4 - Curl HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/7 - Git All.json → root/etc/opensnitchd/rules/4 - Git All.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:29:44.7636044+01:00",
"updated": "2021-03-01T21:29:44.76373548+01:00",
"name": "7 - Git All",
"created": "2021-03-26T14:53:18.08440206+01:00",
"updated": "2021-03-26T14:53:18.084531091+01:00",
"name": "4 - Git All",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/7 - Pacman HTTPS.json → root/etc/opensnitchd/rules/4 - Pacman HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:16:30.742147712+01:00",
"updated": "2021-03-01T21:16:30.742295608+01:00",
"name": "7 - Pacman HTTPS",
"created": "2021-03-26T14:52:15.458656023+01:00",
"updated": "2021-03-26T14:52:15.458812681+01:00",
"name": "4 - Pacman HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/7 - Pkgfile HTTPS.json → root/etc/opensnitchd/rules/4 - Pkgfile HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:24:00.24518723+01:00",
"updated": "2021-03-01T21:24:00.245307482+01:00",
"name": "7 - Pkgfile HTTPS",
"created": "2021-03-26T14:53:36.851205357+01:00",
"updated": "2021-03-26T14:53:36.851336407+01:00",
"name": "4 - Pkgfile HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

15
root/etc/opensnitchd/rules/7 - SSH.json → root/etc/opensnitchd/rules/4 - SSH.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:19:30.12880345+01:00",
"updated": "2021-03-01T21:19:30.128933642+01:00",
"name": "7 - SSH",
"created": "2021-03-26T14:55:32.627718743+01:00",
"updated": "2021-03-26T14:55:32.627823529+01:00",
"name": "4 - SSH",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/ssh\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(22|69)$\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/ssh\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -25,13 +25,6 @@
"sensitive": false,
"data": "/usr/bin/ssh",
"list": null
},
{
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "^(22|69)$",
"list": null
}
]
}

6
root/etc/opensnitchd/rules/7 - Wget HTTP+S.json → root/etc/opensnitchd/rules/4 - Wget HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:22:51.723767504+01:00",
"updated": "2021-03-01T21:22:51.723947736+01:00",
"name": "7 - Wget HTTP+S",
"created": "2021-03-26T14:52:45.386672313+01:00",
"updated": "2021-03-26T14:52:45.386820625+01:00",
"name": "4 - Wget HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/7 - Yay (AUR) HTTPS.json → root/etc/opensnitchd/rules/4 - Yay (AUR) HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:16:57.02241505+01:00",
"updated": "2021-03-01T21:16:57.022570136+01:00",
"name": "7 - Yay (AUR) HTTPS",
"created": "2021-03-26T14:52:25.658707558+01:00",
"updated": "2021-03-26T14:52:25.658876726+01:00",
"name": "4 - Yay (AUR) HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/KDE Init (Widgets) HTTPS.json → root/etc/opensnitchd/rules/5 - KDE Init (Widgets) HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T00:22:26.791308073+01:00",
"updated": "2021-02-14T00:22:26.791423294+01:00",
"name": "KDE Init (Widgets) HTTPS",
"created": "2021-03-26T15:01:40.246561989+01:00",
"updated": "2021-03-26T15:01:40.24674061+01:00",
"name": "5 - KDE Init (Widgets) HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

38
root/etc/opensnitchd/rules/5 - KDE Telemetry.json Normal file
View file

@ -0,0 +1,38 @@
{
"created": "2021-03-26T14:58:25.517342143+01:00",
"updated": "2021-03-26T14:58:25.517486366+01:00",
"name": "5 - KDE Telemetry",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/plasmashell\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.host\", \"data\": \"telemetry.kde.org\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/plasmashell",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
},
{
"type": "simple",
"operand": "dest.host",
"sensitive": false,
"data": "telemetry.kde.org",
"list": null
}
]
}
}

6
root/etc/opensnitchd/rules/KScreenLocker Greet HTTPS.json → root/etc/opensnitchd/rules/5 - KScreenLocker Greet HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:41:51.119263965+01:00",
"updated": "2021-02-14T10:41:51.119369128+01:00",
"name": "KScreenLocker Greet HTTPS",
"created": "2021-03-26T14:58:41.453127782+01:00",
"updated": "2021-03-26T14:58:41.453247154+01:00",
"name": "5 - KScreenLocker Greet HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Plasma Browser Integration HTTPS.json → root/etc/opensnitchd/rules/5 - Plasma Browser Integration HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-23T22:56:10.93718998+01:00",
"updated": "2021-02-23T22:56:10.937244167+01:00",
"name": "Plasma Browser Integration HTTPS",
"created": "2021-03-26T14:58:51.013216555+01:00",
"updated": "2021-03-26T14:58:51.013358956+01:00",
"name": "5 - Plasma Browser Integration HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/VirtualBox ALL.json → root/etc/opensnitchd/rules/5 - VirtualBox ALL.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-23T22:57:19.095106696+01:00",
"updated": "2021-02-23T22:57:19.095178679+01:00",
"name": "VirtualBox ALL",
"created": "2021-03-26T15:06:09.065865819+01:00",
"updated": "2021-03-26T15:06:09.065936078+01:00",
"name": "5 - VirtualBox ALL",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Caprine 1 - UDP.json → root/etc/opensnitchd/rules/6 - Caprine 1 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:40:02.803609572+01:00",
"updated": "2021-03-01T21:40:02.803786783+01:00",
"name": "Caprine 1 - UDP",
"created": "2021-03-26T15:05:34.481391307+01:00",
"updated": "2021-03-26T15:05:34.481508413+01:00",
"name": "6 - Caprine 1 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Caprine 2 - IP Grabbers.json → root/etc/opensnitchd/rules/6 - Caprine 2 - IP Grabbers.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:39:55.235940148+01:00",
"updated": "2021-03-01T21:39:55.236057227+01:00",
"name": "Caprine 2 - IP Grabbers",
"created": "2021-03-26T15:05:42.793872103+01:00",
"updated": "2021-03-26T15:05:42.793987628+01:00",
"name": "6 - Caprine 2 - IP Grabbers",
"enabled": true,
"precedence": true,
"action": "deny",

6
root/etc/opensnitchd/rules/Chromium 1 - HTTP+S.json → root/etc/opensnitchd/rules/6 - Chromium 1 - HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:41:41.212782195+01:00",
"updated": "2021-03-01T21:41:41.21289267+01:00",
"name": "Chromium 1 - HTTP+S",
"created": "2021-03-26T15:02:22.863576228+01:00",
"updated": "2021-03-26T15:02:22.863723433+01:00",
"name": "6 - Chromium 1 - HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Chromium 2 - UDP.json → root/etc/opensnitchd/rules/6 - Chromium 2 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:41:52.260963319+01:00",
"updated": "2021-03-01T21:41:52.261076398+01:00",
"name": "Chromium 2 - UDP",
"created": "2021-03-26T15:00:30.758958286+01:00",
"updated": "2021-03-26T15:00:30.759131117+01:00",
"name": "6 - Chromium 2 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Chromium 3 - Google DNS.json → root/etc/opensnitchd/rules/6 - Chromium 3 - Google DNS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:42:04.437447371+01:00",
"updated": "2021-03-01T21:42:04.437576729+01:00",
"name": "Chromium 3 - Google DNS",
"created": "2021-03-26T15:00:39.45302295+01:00",
"updated": "2021-03-26T15:00:39.453105125+01:00",
"name": "6 - Chromium 3 - Google DNS",
"enabled": true,
"precedence": true,
"action": "deny",

6
root/etc/opensnitchd/rules/Discord 1 - HTTP+S.json → root/etc/opensnitchd/rules/6 - Discord 1 - HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:42:22.493603279+01:00",
"updated": "2021-03-01T21:42:22.493725964+01:00",
"name": "Discord 1 - HTTP+S",
"created": "2021-03-26T15:00:47.05534584+01:00",
"updated": "2021-03-26T15:00:47.055503114+01:00",
"name": "6 - Discord 1 - HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Discord 2 - UDP.json → root/etc/opensnitchd/rules/6 - Discord 2 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:42:31.061655729+01:00",
"updated": "2021-03-01T21:42:31.061769254+01:00",
"name": "Discord 2 - UDP",
"created": "2021-03-26T15:00:54.726404116+01:00",
"updated": "2021-03-26T15:00:54.726525934+01:00",
"name": "6 - Discord 2 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Electron HTTPS.json → root/etc/opensnitchd/rules/6 - Electron HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-19T00:24:20.370479504+01:00",
"updated": "2021-02-19T00:24:20.370634955+01:00",
"name": "Electron HTTPS",
"created": "2021-03-26T15:03:20.472154851+01:00",
"updated": "2021-03-26T15:03:20.472291079+01:00",
"name": "6 - Electron HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Firefox 1 - HTTP+S.json → root/etc/opensnitchd/rules/6 - Firefox 1 - HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:42:50.766044053+01:00",
"updated": "2021-03-01T21:42:50.766180097+01:00",
"name": "Firefox 1 - HTTP+S",
"created": "2021-03-26T15:01:03.878891592+01:00",
"updated": "2021-03-26T15:01:03.879007456+01:00",
"name": "6 - Firefox 1 - HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Firefox 2 - UDP.json → root/etc/opensnitchd/rules/6 - Firefox 2 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:43:02.486433916+01:00",
"updated": "2021-03-01T21:43:02.486562939+01:00",
"name": "Firefox 2 - UDP",
"created": "2021-03-26T15:01:21.022762959+01:00",
"updated": "2021-03-26T15:01:21.022899201+01:00",
"name": "6 - Firefox 2 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

8
root/etc/opensnitchd/rules/Firefox 3 - Telemetry.json → root/etc/opensnitchd/rules/6 - Firefox 3 - PingSender.json
View file

@ -1,10 +1,10 @@
{
"created": "2021-03-01T21:43:14.486480845+01:00",
"updated": "2021-03-01T21:43:14.486530002+01:00",
"name": "Firefox 3 - Telemetry",
"created": "2021-03-26T15:01:27.902723849+01:00",
"updated": "2021-03-26T15:01:27.902798768+01:00",
"name": "6 - Firefox 3 - PingSender",
"enabled": true,
"precedence": false,
"action": "deny",
"action": "allow",
"duration": "always",
"operator": {
"type": "simple",

31
root/etc/opensnitchd/rules/6 - Gimagereader HTTPS.json Normal file
View file

@ -0,0 +1,31 @@
{
"created": "2021-03-26T15:06:47.786430608+01:00",
"updated": "2021-03-26T15:06:47.786567338+01:00",
"name": "6 - Gimagereader HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/gimagereader-qt5\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/gimagereader-qt5",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

8
root/etc/opensnitchd/rules/3-Systemd Resolved.json → root/etc/opensnitchd/rules/6 - Go (language).json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:43:46.04607091+01:00",
"updated": "2021-02-14T10:43:46.046110281+01:00",
"name": "3-Systemd Resolved",
"created": "2021-03-26T15:10:53.909451068+01:00",
"updated": "2021-03-26T15:10:53.90953488+01:00",
"name": "6 - Go (language)",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/lib/systemd/systemd-resolved",
"data": "/usr/lib/go/bin/go",
"list": []
}
}

6
root/etc/opensnitchd/rules/Python HTTP+S.json → root/etc/opensnitchd/rules/6 - Python HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:23:27.597128697+01:00",
"updated": "2021-03-01T21:23:27.597317986+01:00",
"name": "Python HTTP+S",
"created": "2021-03-26T15:10:46.661735004+01:00",
"updated": "2021-03-26T15:10:46.66187107+01:00",
"name": "6 - Python HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",

16
root/etc/opensnitchd/rules/6 - QBitTorrent.json Normal file
View file

@ -0,0 +1,16 @@
{
"created": "2021-03-26T15:03:59.240296743+01:00",
"updated": "2021-03-26T15:03:59.240369823+01:00",
"name": "6 - QBitTorrent",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/qbittorrent",
"list": []
}
}

6
root/etc/opensnitchd/rules/Qalculate HTTPS.json → root/etc/opensnitchd/rules/6 - Qalculate HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T00:52:11.884513258+01:00",
"updated": "2021-02-14T00:52:11.884605842+01:00",
"name": "Qalculate HTTPS",
"created": "2021-03-26T15:03:51.080504273+01:00",
"updated": "2021-03-26T15:03:51.080636184+01:00",
"name": "6 - Qalculate HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Spotify 1 - needed.json → root/etc/opensnitchd/rules/6 - Spotify 1 - needed.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-09T20:20:26.84640618+01:00",
"updated": "2021-03-09T20:20:26.84654111+01:00",
"name": "Spotify 1 - needed",
"created": "2021-03-26T15:01:53.487069746+01:00",
"updated": "2021-03-26T15:01:53.487181823+01:00",
"name": "6 - Spotify 1 - needed",
"enabled": true,
"precedence": true,
"action": "allow",

6
root/etc/opensnitchd/rules/Spotify 2 - ads+telemetry.json → root/etc/opensnitchd/rules/6 - Spotify 2 - ads+telemetry.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:37:06.224696669+01:00",
"updated": "2021-03-01T21:37:06.224763305+01:00",
"name": "Spotify 2 - ads+telemetry",
"created": "2021-03-26T15:02:02.343313434+01:00",
"updated": "2021-03-26T15:02:02.343390075+01:00",
"name": "6 - Spotify 2 - ads+telemetry",
"enabled": true,
"precedence": false,
"action": "deny",

8
root/etc/opensnitchd/rules/Spotify 3 - internal ads+telemetry.json → root/etc/opensnitchd/rules/6 - Spotify 3 - internal ads+telemetry.json
View file

@ -1,8 +1,8 @@
{
"created": "2021-03-01T22:13:03.499849259+01:00",
"updated": "2021-03-01T22:13:03.499984082+01:00",
"name": "Spotify 3 - internal ads+telemetry",
"enabled": true,
"created": "2021-03-26T15:02:16.687208851+01:00",
"updated": "2021-03-26T15:02:16.687359725+01:00",
"name": "6 - Spotify 3 - internal ads+telemetry",
"enabled": false,
"precedence": true,
"action": "deny",
"duration": "always",

6
root/etc/opensnitchd/rules/Tor Browser ALL.json → root/etc/opensnitchd/rules/6 - Tor Browser ALL.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-22T13:28:34.500529324+01:00",
"updated": "2021-02-22T13:28:34.500593302+01:00",
"name": "Tor Browser ALL",
"created": "2021-03-26T15:02:09.109657936+01:00",
"updated": "2021-03-26T15:02:09.109691483+01:00",
"name": "6 - Tor Browser ALL",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Tor service.json → root/etc/opensnitchd/rules/6 - Tor service.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-15T12:00:44.377009767+01:00",
"updated": "2021-02-15T12:00:44.377062795+01:00",
"name": "Tor service",
"created": "2021-03-26T15:04:19.984514998+01:00",
"updated": "2021-03-26T15:04:19.984594133+01:00",
"name": "6 - Tor service",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/VSCode HTTPS.json → root/etc/opensnitchd/rules/6 - VSCode HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:34:00.214241703+01:00",
"updated": "2021-03-01T21:34:00.21437314+01:00",
"name": "VSCode HTTPS",
"created": "2021-03-26T15:04:13.753378423+01:00",
"updated": "2021-03-26T15:04:13.75353041+01:00",
"name": "6 - VSCode HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

38
root/etc/opensnitchd/rules/6 - Xsane (scanner software).json Normal file
View file

@ -0,0 +1,38 @@
{
"created": "2021-03-26T15:07:51.203426947+01:00",
"updated": "2021-03-26T15:07:51.203586715+01:00",
"name": "6 - Xsane (scanner software)",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/xsane\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"161\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.ip\", \"data\": \"255.255.255.255\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/xsane",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "161",
"list": null
},
{
"type": "simple",
"operand": "dest.ip",
"sensitive": false,
"data": "255.255.255.255",
"list": null
}
]
}
}

6
root/etc/opensnitchd/rules/Zoom 1 - needed.json → root/etc/opensnitchd/rules/6 - Zoom 1: needed.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:36:06.049386579+01:00",
"updated": "2021-03-01T21:36:06.049489329+01:00",
"name": "Zoom 1 - needed",
"created": "2021-03-26T15:07:34.123428308+01:00",
"updated": "2021-03-26T15:07:34.123557306+01:00",
"name": "6 - Zoom 1: needed",
"enabled": true,
"precedence": true,
"action": "allow",

6
root/etc/opensnitchd/rules/Zoom 2 - telemetry.json → root/etc/opensnitchd/rules/6 - Zoom 2: telemetry.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T21:37:17.67293651+01:00",
"updated": "2021-03-01T21:37:17.672999662+01:00",
"name": "Zoom 2 - telemetry",
"created": "2021-03-26T15:07:42.402689917+01:00",
"updated": "2021-03-26T15:07:42.40277358+01:00",
"name": "6 - Zoom 2: telemetry",
"enabled": true,
"precedence": false,
"action": "deny",

38
root/etc/opensnitchd/rules/6-NetworkManager HTTP.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-14T10:45:11.468167232+01:00",
"updated": "2021-02-14T10:45:11.468282083+01:00",
"name": "6-NetworkManager HTTP",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/NetworkManager\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"80\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/NetworkManager",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "80",
"list": null
}
]
}
}

38
root/etc/opensnitchd/rules/7 - DownloadHelper HTTPS.json Normal file
View file

@ -0,0 +1,38 @@
{
"created": "2021-03-26T15:06:58.026583665+01:00",
"updated": "2021-03-26T15:06:58.026700643+01:00",
"name": "7 - DownloadHelper HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/local/net.downloadhelper.coapp-1.6.1/bin/net.downloadhelper.coapp-linux-64\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/local/net.downloadhelper.coapp-1.6.1/bin/net.downloadhelper.coapp-linux-64",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

6
root/etc/opensnitchd/rules/Exodus HTTPS.json → root/etc/opensnitchd/rules/7 - Exodus HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T11:54:55.161311241+01:00",
"updated": "2021-02-14T11:54:55.161438905+01:00",
"name": "Exodus HTTPS",
"created": "2021-03-26T15:06:00.313939576+01:00",
"updated": "2021-03-26T15:06:00.314088658+01:00",
"name": "7 - Exodus HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

31
root/etc/opensnitchd/rules/7 - Google Remote Desktop (Start).json Normal file
View file

@ -0,0 +1,31 @@
{
"created": "2021-03-26T15:08:32.002388702+01:00",
"updated": "2021-03-26T15:08:32.002444202+01:00",
"name": "7 - Google Remote Desktop (Start)",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/google/chrome-remote-desktop/start-host\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/opt/google/chrome-remote-desktop/start-host",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

31
root/etc/opensnitchd/rules/7 - Google Remote Desktop (host).json Normal file
View file

@ -0,0 +1,31 @@
{
"created": "2021-03-26T15:08:40.676085602+01:00",
"updated": "2021-03-26T15:08:40.676199845+01:00",
"name": "7 - Google Remote Desktop (host)",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/google/chrome-remote-desktop/chrome-remote-desktop-host\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"3478\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/opt/google/chrome-remote-desktop/chrome-remote-desktop-host",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "3478",
"list": null
}
]
}
}

31
root/etc/opensnitchd/rules/7 - Google remote desktop host HTTPS.json Normal file
View file

@ -0,0 +1,31 @@
{
"created": "2021-03-26T15:08:48.779949158+01:00",
"updated": "2021-03-26T15:08:48.78007234+01:00",
"name": "7 - Google remote desktop host HTTPS",
"enabled": false,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/google/chrome-remote-desktop/chrome-remote-desktop-host\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/opt/google/chrome-remote-desktop/chrome-remote-desktop-host",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

6
root/etc/opensnitchd/rules/OBS.json → root/etc/opensnitchd/rules/7 - OBS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-09T21:36:39.088161018+01:00",
"updated": "2021-03-09T21:36:39.088329487+01:00",
"name": "OBS",
"created": "2021-03-26T15:06:19.416884298+01:00",
"updated": "2021-03-26T15:06:19.416964918+01:00",
"name": "7 - OBS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Portmaster ALL.json → root/etc/opensnitchd/rules/7 - Portmaster ALL.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-09T21:33:24.507475085+01:00",
"updated": "2021-03-09T21:33:24.507540494+01:00",
"name": "Portmaster ALL",
"created": "2021-03-26T15:09:05.172414932+01:00",
"updated": "2021-03-26T15:09:05.172493217+01:00",
"name": "7 - Portmaster ALL",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Postgres UDP.json → root/etc/opensnitchd/rules/7 - Postgres UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T11:01:10.596780435+01:00",
"updated": "2021-02-14T11:01:10.596842776+01:00",
"name": "Postgres UDP",
"created": "2021-03-26T15:07:12.074594056+01:00",
"updated": "2021-03-26T15:07:12.074724626+01:00",
"name": "7 - Postgres UDP",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Postman.json → root/etc/opensnitchd/rules/7 - Postman.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T12:14:10.502846179+01:00",
"updated": "2021-02-14T12:14:10.502884251+01:00",
"name": "Postman",
"created": "2021-03-26T15:07:20.01066125+01:00",
"updated": "2021-03-26T15:07:20.010747563+01:00",
"name": "7 - Postman",
"enabled": true,
"precedence": false,
"action": "allow",

38
root/etc/opensnitchd/rules/DownloadHelper HTTPS.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-03-01T21:13:17.146974819+01:00",
"updated": "2021-03-01T21:13:17.14711836+01:00",
"name": "DownloadHelper HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/home/itsdrike/net.downloadhelper.coapp-1.6.0/bin/net.downloadhelper.coapp-linux-64\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/home/itsdrike/net.downloadhelper.coapp-1.6.0/bin/net.downloadhelper.coapp-linux-64",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}