ItsDrike/dotfiles
1
0
Fork 0
mirror of https://github.com/ItsDrike/dotfiles.git synced 2024-09-19 21:29:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update opensnitch rules

Browse source
This commit is contained in:
ItsDrike 2021-03-09 21:43:29 +01:00
parent 7ad79a9d3e
commit 0a7f09dabe
No known key found for this signature in database
GPG key ID: 252D306F545351FC
37 changed files with 194 additions and 422 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
root/etc/opensnitchd/rules/Arch-Audit.json → root/etc/opensnitchd/rules/7 - Arch-Audit HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-20T19:03:50.477917059+01:00",
"updated": "2021-02-20T19:03:50.478029169+01:00",
"name": "Arch-Audit",
"created": "2021-03-01T21:24:11.869179084+01:00",
"updated": "2021-03-01T21:24:11.86932645+01:00",
"name": "7 - Arch-Audit HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Clord (color management daemon).json → root/etc/opensnitchd/rules/7 - Clord (color management daemon).json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-15T00:45:05.734560163+01:00",
"updated": "2021-02-15T00:45:05.734609624+01:00",
"name": "Clord (color management daemon)",
"created": "2021-03-01T21:17:24.774744912+01:00",
"updated": "2021-03-01T21:17:24.774890683+01:00",
"name": "7 - Clord (color management daemon)",
"enabled": true,
"precedence": false,
"action": "allow",

12
root/etc/opensnitchd/rules/Curl HTTP.json → root/etc/opensnitchd/rules/7 - Curl HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T17:46:54.292300015+01:00",
"updated": "2021-02-14T17:46:54.292421976+01:00",
"name": "Curl HTTP",
"created": "2021-03-01T21:22:42.115763864+01:00",
"updated": "2021-03-01T21:22:42.115902561+01:00",
"name": "7 - Curl HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/curl\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"80\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/curl\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "80",
"data": "^(80|443)$",
"list": null
}
]

17
root/etc/opensnitchd/rules/Python HTTPS.json → root/etc/opensnitchd/rules/7 - Git All.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T11:07:14.893922125+01:00",
"updated": "2021-02-14T11:07:14.89400606+01:00",
"name": "Python HTTPS",
"created": "2021-03-01T21:29:44.7636044+01:00",
"updated": "2021-03-01T21:29:44.76373548+01:00",
"name": "7 - Git All",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"process.path\", \"data\": \"/usr/bin/python*\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"process.path\", \"data\": \"(\\\\/usr\\\\/bin\\\\/git)|(\\\\/usr\\\\/lib\\\\/git-core\\\\/git-remote-https?)\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -23,14 +23,7 @@
"type": "regexp",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/python*",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"data": "(\\/usr\\/bin\\/git)|(\\/usr\\/lib\\/git-core\\/git-remote-https?)",
"list": null
}
]

6
root/etc/opensnitchd/rules/Pacman HTTPS.json → root/etc/opensnitchd/rules/7 - Pacman HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T11:34:12.603291381+01:00",
"updated": "2021-02-14T11:34:12.603387758+01:00",
"name": "Pacman HTTPS",
"created": "2021-03-01T21:16:30.742147712+01:00",
"updated": "2021-03-01T21:16:30.742295608+01:00",
"name": "7 - Pacman HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Pkgfile HTTPS.json → root/etc/opensnitchd/rules/7 - Pkgfile HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-16T15:17:18.298172602+01:00",
"updated": "2021-02-16T15:17:18.298287419+01:00",
"name": "Pkgfile HTTPS",
"created": "2021-03-01T21:24:00.24518723+01:00",
"updated": "2021-03-01T21:24:00.245307482+01:00",
"name": "7 - Pkgfile HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

12
root/etc/opensnitchd/rules/SSH.json → root/etc/opensnitchd/rules/7 - SSH.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-15T13:19:58.353616558+01:00",
"updated": "2021-02-15T13:19:58.353662508+01:00",
"name": "SSH",
"created": "2021-03-01T21:19:30.12880345+01:00",
"updated": "2021-03-01T21:19:30.128933642+01:00",
"name": "7 - SSH",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/ssh\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"22\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/ssh\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(22|69)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "22",
"data": "^(22|69)$",
"list": null
}
]

12
root/etc/opensnitchd/rules/Wget HTTP.json → root/etc/opensnitchd/rules/7 - Wget HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-13T23:30:34.914828627+01:00",
"updated": "2021-02-13T23:30:34.914954116+01:00",
"name": "Wget HTTP",
"created": "2021-03-01T21:22:51.723767504+01:00",
"updated": "2021-03-01T21:22:51.723947736+01:00",
"name": "7 - Wget HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/wget\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"80\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/wget\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "80",
"data": "^(80|443)$",
"list": null
}
]

6
root/etc/opensnitchd/rules/AUR yay HTTPS.json → root/etc/opensnitchd/rules/7 - Yay (AUR) HTTPS.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T12:44:47.143960761+01:00",
"updated": "2021-02-14T12:44:47.144048989+01:00",
"name": "AUR yay HTTPS",
"created": "2021-03-01T21:16:57.02241505+01:00",
"updated": "2021-03-01T21:16:57.022570136+01:00",
"name": "7 - Yay (AUR) HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Caprine UDP.json → root/etc/opensnitchd/rules/Caprine 1 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-19T00:28:51.198864766+01:00",
"updated": "2021-02-19T00:28:51.198995323+01:00",
"name": "Caprine UDP",
"created": "2021-03-01T21:40:02.803609572+01:00",
"updated": "2021-03-01T21:40:02.803786783+01:00",
"name": "Caprine 1 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Caprine IP grabbers.json → root/etc/opensnitchd/rules/Caprine 2 - IP Grabbers.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-19T00:29:16.119021299+01:00",
"updated": "2021-02-19T00:29:16.119128892+01:00",
"name": "Caprine IP grabbers",
"created": "2021-03-01T21:39:55.235940148+01:00",
"updated": "2021-03-01T21:39:55.236057227+01:00",
"name": "Caprine 2 - IP Grabbers",
"enabled": true,
"precedence": true,
"action": "deny",

12
root/etc/opensnitchd/rules/Chromium HTTPS.json → root/etc/opensnitchd/rules/Chromium 1 - HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T00:18:20.623018681+01:00",
"updated": "2021-02-14T00:18:20.62324739+01:00",
"name": "Chromium HTTPS",
"created": "2021-03-01T21:41:41.212782195+01:00",
"updated": "2021-03-01T21:41:41.21289267+01:00",
"name": "Chromium 1 - HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/chromium/chromium\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/chromium/chromium\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"data": "^(80|443)$",
"list": null
}
]

6
root/etc/opensnitchd/rules/Chromium UDP.json → root/etc/opensnitchd/rules/Chromium 2 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T00:18:54.11686162+01:00",
"updated": "2021-02-14T00:18:54.116932705+01:00",
"name": "Chromium UDP",
"created": "2021-03-01T21:41:52.260963319+01:00",
"updated": "2021-03-01T21:41:52.261076398+01:00",
"name": "Chromium 2 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

8
root/etc/opensnitchd/rules/Chromium Google DNS.json → root/etc/opensnitchd/rules/Chromium 3 - Google DNS.json
View file

@ -1,9 +1,9 @@
{
"created": "2021-02-17T12:00:56.475733011+01:00",
"updated": "2021-02-17T12:00:56.475877494+01:00",
"name": "Chromium Google DNS",
"created": "2021-03-01T21:42:04.437447371+01:00",
"updated": "2021-03-01T21:42:04.437576729+01:00",
"name": "Chromium 3 - Google DNS",
"enabled": true,
"precedence": false,
"precedence": true,
"action": "deny",
"duration": "always",
"operator": {

38
root/etc/opensnitchd/rules/Chromium HTTP.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-14T00:17:50.974703609+01:00",
"updated": "2021-02-14T00:17:50.974816247+01:00",
"name": "Chromium HTTP",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/chromium/chromium\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"80\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/lib/chromium/chromium",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "80",
"list": null
}
]
}
}

38
root/etc/opensnitchd/rules/Curl HTTPS.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-14T17:47:02.764007397+01:00",
"updated": "2021-02-14T17:47:02.764115564+01:00",
"name": "Curl HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/curl\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/curl",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

12
root/etc/opensnitchd/rules/Discord HTTPS.json → root/etc/opensnitchd/rules/Discord 1 - HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-15T13:29:25.065236008+01:00",
"updated": "2021-02-15T13:29:25.065387003+01:00",
"name": "Discord HTTPS",
"created": "2021-03-01T21:42:22.493603279+01:00",
"updated": "2021-03-01T21:42:22.493725964+01:00",
"name": "Discord 1 - HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/discord/Discord\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/discord/Discord\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"data": "^(80|443)$",
"list": null
}
]

6
root/etc/opensnitchd/rules/Discord UDP.json → root/etc/opensnitchd/rules/Discord 2 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-15T01:22:26.772953567+01:00",
"updated": "2021-02-15T01:22:26.773090799+01:00",
"name": "Discord UDP",
"created": "2021-03-01T21:42:31.061655729+01:00",
"updated": "2021-03-01T21:42:31.061769254+01:00",
"name": "Discord 2 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

12
root/etc/opensnitchd/rules/Firefox HTTP.json → root/etc/opensnitchd/rules/Firefox 1 - HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-13T23:43:52.316119041+01:00",
"updated": "2021-02-13T23:43:52.316217252+01:00",
"name": "Firefox HTTP",
"created": "2021-03-01T21:42:50.766044053+01:00",
"updated": "2021-03-01T21:42:50.766180097+01:00",
"name": "Firefox 1 - HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/firefox/firefox\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"80\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/firefox/firefox\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "80",
"data": "^(80|443)$",
"list": null
}
]

6
root/etc/opensnitchd/rules/Firefox UDP.json → root/etc/opensnitchd/rules/Firefox 2 - UDP.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-13T23:47:47.99371662+01:00",
"updated": "2021-02-13T23:47:47.993816348+01:00",
"name": "Firefox UDP",
"created": "2021-03-01T21:43:02.486433916+01:00",
"updated": "2021-03-01T21:43:02.486562939+01:00",
"name": "Firefox 2 - UDP",
"enabled": true,
"precedence": false,
"action": "allow",

6
root/etc/opensnitchd/rules/Firefox Telemetry.json → root/etc/opensnitchd/rules/Firefox 3 - Telemetry.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T10:47:26.440467737+01:00",
"updated": "2021-02-14T10:47:26.440519824+01:00",
"name": "Firefox Telemetry",
"created": "2021-03-01T21:43:14.486480845+01:00",
"updated": "2021-03-01T21:43:14.486530002+01:00",
"name": "Firefox 3 - Telemetry",
"enabled": true,
"precedence": false,
"action": "deny",

38
root/etc/opensnitchd/rules/Firefox HTTPS.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-13T23:00:13.231290903+01:00",
"updated": "2021-02-13T23:00:13.231364715+01:00",
"name": "Firefox HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/firefox/firefox\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/lib/firefox/firefox",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

31
root/etc/opensnitchd/rules/Git All TCP.json
View file

@ -1,31 +0,0 @@
{
"created": "2021-02-15T13:33:07.582364723+01:00",
"updated": "2021-02-15T13:33:07.582471317+01:00",
"name": "Git All TCP",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/git\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/git",
"list": null
}
]
}
}

38
root/etc/opensnitchd/rules/Git Remote HTTP.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-14T12:04:29.819374748+01:00",
"updated": "2021-02-14T12:04:29.819497235+01:00",
"name": "Git Remote HTTP",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/git-core/git-remote-http\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/lib/git-core/git-remote-http",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

38
root/etc/opensnitchd/rules/Git Remote HTTPS.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-14T00:09:22.43748312+01:00",
"updated": "2021-02-14T00:09:22.437567119+01:00",
"name": "Git Remote HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/lib/git-core/git-remote-https\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/lib/git-core/git-remote-https",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

45
root/etc/opensnitchd/rules/OBS.json Normal file
View file

@ -0,0 +1,45 @@
{
"created": "2021-03-09T21:36:39.088161018+01:00",
"updated": "2021-03-09T21:36:39.088329487+01:00",
"name": "OBS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/obs\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.host\", \"data\": \"obsproject.com\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/obs",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
},
{
"type": "simple",
"operand": "dest.host",
"sensitive": false,
"data": "obsproject.com",
"list": null
}
]
}
}

16
root/etc/opensnitchd/rules/Portmaster ALL.json Normal file
View file

@ -0,0 +1,16 @@
{
"created": "2021-03-09T21:33:24.507475085+01:00",
"updated": "2021-03-09T21:33:24.507540494+01:00",
"name": "Portmaster ALL",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "regexp",
"operand": "process.path",
"sensitive": false,
"data": "\\/var\\/lib\\/portmaster\\/.*",
"list": []
}
}

12
root/etc/opensnitchd/rules/Python HTTP.json → root/etc/opensnitchd/rules/Python HTTP+S.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-14T11:06:10.341476457+01:00",
"updated": "2021-02-14T11:06:10.341615213+01:00",
"name": "Python HTTP",
"created": "2021-03-01T21:23:27.597128697+01:00",
"updated": "2021-03-01T21:23:27.597317986+01:00",
"name": "Python HTTP+S",
"enabled": true,
"precedence": false,
"action": "allow",
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"process.path\", \"data\": \"/usr/bin/python*\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"80\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"process.path\", \"data\": \"/usr/bin/python*\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.port\", \"data\": \"^(80|443)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -27,10 +27,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "dest.port",
"sensitive": false,
"data": "80",
"data": "^(80|443)$",
"list": null
}
]

8
root/etc/opensnitchd/rules/Spotify 1 - needed.json
View file

@ -1,6 +1,6 @@
{
"created": "2021-03-01T20:04:39.570767993+01:00",
"updated": "2021-03-01T20:04:39.570848018+01:00",
"created": "2021-03-09T20:20:26.84640618+01:00",
"updated": "2021-03-09T20:20:26.84654111+01:00",
"name": "Spotify 1 - needed",
"enabled": true,
"precedence": true,
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/spotify/spotify\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.host\", \"data\": \"(.*\\\\.?spotify\\\\.com)|(audio.+spotify.+\\\\.akamaized\\\\.net)|(.*\\\\.?scdn\\\\.co)\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/spotify/spotify\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.host\", \"data\": \"^(.*\\\\.?spotify\\\\.com)|(audio.+spotify.+\\\\.akamaized\\\\.net)|(.*\\\\.?scdn\\\\.co)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -23,7 +23,7 @@
"type": "regexp",
"operand": "dest.host",
"sensitive": false,
"data": "(.*\\.?spotify\\.com)|(audio.+spotify.+\\.akamaized\\.net)|(.*\\.?scdn\\.co)",
"data": "^(.*\\.?spotify\\.com)|(audio.+spotify.+\\.akamaized\\.net)|(.*\\.?scdn\\.co)$",
"list": null
}
]

6
root/etc/opensnitchd/rules/Spotify 2 - ads (everything else).json → root/etc/opensnitchd/rules/Spotify 2 - ads+telemetry.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T19:58:54.03179178+01:00",
"updated": "2021-03-01T19:58:54.031858532+01:00",
"name": "Spotify 2 - ads (everything else)",
"created": "2021-03-01T21:37:06.224696669+01:00",
"updated": "2021-03-01T21:37:06.224763305+01:00",
"name": "Spotify 2 - ads+telemetry",
"enabled": true,
"precedence": false,
"action": "deny",

31
root/etc/opensnitchd/rules/Spotify 3 - internal ads+telemetry.json Normal file
View file

@ -0,0 +1,31 @@
{
"created": "2021-03-01T22:13:03.499849259+01:00",
"updated": "2021-03-01T22:13:03.499984082+01:00",
"name": "Spotify 3 - internal ads+telemetry",
"enabled": true,
"precedence": true,
"action": "deny",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/spotify/spotify\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"dest.host\", \"data\": \"^(ads(-.+)?\\\\.spotify\\\\.com)|(advancedtracker\\\\.spotify\\\\.com)|(analytics\\\\.spotify\\\\.com)|adlab\\\\.spotify\\\\.com|(crashdump(\\\\..+)?\\\\.spotify\\\\.com)|(log\\\\.spotify\\\\.com)|(log2\\\\.spotify\\\\.com)$\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/opt/spotify/spotify",
"list": null
},
{
"type": "regexp",
"operand": "dest.host",
"sensitive": false,
"data": "^(ads(-.+)?\\.spotify\\.com)|(advancedtracker\\.spotify\\.com)|(analytics\\.spotify\\.com)|adlab\\.spotify\\.com|(crashdump(\\..+)?\\.spotify\\.com)|(log\\.spotify\\.com)|(log2\\.spotify\\.com)$",
"list": null
}
]
}
}

10
root/etc/opensnitchd/rules/VSCode HTTPS.json
View file

@ -1,6 +1,6 @@
{
"created": "2021-02-14T00:00:26.151773147+01:00",
"updated": "2021-02-14T00:00:26.151968278+01:00",
"created": "2021-03-01T21:34:00.214241703+01:00",
"updated": "2021-03-01T21:34:00.21437314+01:00",
"name": "VSCode HTTPS",
"enabled": true,
"precedence": false,
@ -10,7 +10,7 @@
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/opt/visual-studio-code/code\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"process.path\", \"data\": \"(\\\\/opt\\\\/visual-studio-code\\\\/code)|(\\\\/home\\\\/.+\\\\/\\\\.local\\\\/share\\\\/vscode\\\\/.+)\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
@ -20,10 +20,10 @@
"list": null
},
{
"type": "simple",
"type": "regexp",
"operand": "process.path",
"sensitive": false,
"data": "/opt/visual-studio-code/code",
"data": "(\\/opt\\/visual-studio-code\\/code)|(\\/home\\/.+\\/\\.local\\/share\\/vscode\\/.+)",
"list": null
},
{

38
root/etc/opensnitchd/rules/Wakatime VSCode.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-15T14:18:48.745490294+01:00",
"updated": "2021-02-15T14:18:48.74566463+01:00",
"name": "Wakatime VSCode",
"enabled": true,
"precedence": true,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"regexp\", \"operand\": \"process.path\", \"data\": \"\\\\/home\\\\/itsdrike\\\\/\\\\.local\\\\/share\\\\/vscode\\\\/extensions\\\\/wakatime\\\\.vscode-wakatime-[0-9\\\\.]+\\\\/wakatime-cli\\\\/wakatime-cli\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "regexp",
"operand": "process.path",
"sensitive": false,
"data": "\\/home\\/itsdrike\\/\\.local\\/share\\/vscode\\/extensions\\/wakatime\\.vscode-wakatime-[0-9\\.]+\\/wakatime-cli\\/wakatime-cli",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

38
root/etc/opensnitchd/rules/Wget HTTPS.json
View file

@ -1,38 +0,0 @@
{
"created": "2021-02-13T23:29:59.975141428+01:00",
"updated": "2021-02-13T23:29:59.975219689+01:00",
"name": "Wget HTTPS",
"enabled": true,
"precedence": false,
"action": "allow",
"duration": "always",
"operator": {
"type": "list",
"operand": "list",
"sensitive": false,
"data": "[{\"type\": \"simple\", \"operand\": \"protocol\", \"data\": \"tcp\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"process.path\", \"data\": \"/usr/bin/wget\", \"sensitive\": false}, {\"type\": \"simple\", \"operand\": \"dest.port\", \"data\": \"443\", \"sensitive\": false}]",
"list": [
{
"type": "simple",
"operand": "protocol",
"sensitive": false,
"data": "tcp",
"list": null
},
{
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/usr/bin/wget",
"list": null
},
{
"type": "simple",
"operand": "dest.port",
"sensitive": false,
"data": "443",
"list": null
}
]
}
}

6
root/etc/opensnitchd/rules/Zoom 8801,443.json → root/etc/opensnitchd/rules/Zoom 1 - needed.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-02-24T13:50:40.858174814+01:00",
"updated": "2021-02-24T13:50:40.858320084+01:00",
"name": "Zoom 8801,443",
"created": "2021-03-01T21:36:06.049386579+01:00",
"updated": "2021-03-01T21:36:06.049489329+01:00",
"name": "Zoom 1 - needed",
"enabled": true,
"precedence": true,
"action": "allow",

6
root/etc/opensnitchd/rules/Zoom deny rest.json → root/etc/opensnitchd/rules/Zoom 2 - telemetry.json
View file

@ -1,7 +1,7 @@
{
"created": "2021-03-01T20:20:07.151232333+01:00",
"updated": "2021-03-01T20:20:07.151303255+01:00",
"name": "Zoom deny rest",
"created": "2021-03-01T21:37:17.67293651+01:00",
"updated": "2021-03-01T21:37:17.672999662+01:00",
"name": "Zoom 2 - telemetry",
"enabled": true,
"precedence": false,
"action": "deny",

16
root/etc/opensnitchd/rules/Zoom deny rest (allow rule should be prioritized).json
View file

@ -1,16 +0,0 @@
{
"created": "2021-02-24T13:50:23.520756145+01:00",
"updated": "2021-02-24T13:50:23.520820716+01:00",
"name": "Zoom deny rest (allow rule should be prioritized)",
"enabled": true,
"precedence": false,
"action": "deny",
"duration": "always",
"operator": {
"type": "simple",
"operand": "process.path",
"sensitive": false,
"data": "/opt/zoom/zoom",
"list": []
}
}