Replies: 4 comments
-
Hi @atomGit ! Thank you for reviewing the wiki and the suggestions! Many parts of the wiki haven't been updated for quite some time unfortunately.
What's the equivalent on Plasma 6?
Updated. Many screenshots are still from version v1.0.0.
Yeah, the problem is that it can be used to bypass the rules. With the new feature for checking processes' checksums fn the development branch, this is not a problem anymore, but for the stable v1.6.x it is. I added it to the wiki primarily to make users aware of the issue.
I've also updated that section. Please, if you have more suggestions, write the correction here and I'll update the wiki for you. Thank you!! |
Beta Was this translation helpful? Give feedback.
-
dunno - i'm on 5.x
mmm, i see - what's worse, an un-sandboxed browser or firewall trickery? i guess that's anyone's guess :)
sure thing! and thanks for handling it |
Beta Was this translation helpful? Give feedback.
-
re: ok, i see what happened now - i said "there is no 'processes' tab ...", meaning that process info was missing altogether the process info is there, but the "node" column was so wide (by default i believe) that everything else was pushed off-screen and i didn't immediately notice the scroll bar :) re: the explanation for the priority switch technically makes sense on that page but the info in
consider adding that to the "If the connection matches a Priority rule, the firewall will allow it and won't continue evaluating any further rules, even if they pertain to the same command/executable." |
Beta Was this translation helpful? Give feedback.
-
consider adding info for the Arch family ??? proposed info ... the line "Since version > v1.5.2, opensnitch is available on Debian Bookworm 12 and ubuntu 23.04." would have to be edited to include Arch PACMAN
If not installed, also install the version of opensnitch-ebpf-module package that corresponds to the version of opensnitch. If you're running Manjaro Linux and opensnitch-ebpf-module fails to build, edit the build file (ref: https://aur.archlinux.org/packages/opensnitch-ebpf-module): change: Start opensnitch:
If "opensnitch" doesn't work, try "opensnitchd" (required for Manjaro and possibly other Arch derivatives) |
Beta Was this translation helpful? Give feedback.
-
wiki/Getting-started > Some of these processes are:
/usr/bin/kdeinit5
<- file doesn't exist (KDE Frameworks Version: 5.115.0)wiki/Process-monitor-dialog
- there is no 'processes' tab - perhaps it's been removed? or not available on some systems?wiki/Configurations
seems the VPN part can be edited to reflect if ebpf is the process monitor?
wiki/Rules#best-practices > Disable unprivileged namespace
my understanding is that the advice here (set 0) is a very double-edge sword because, at 0, applications like a web browser will not be able to sandbox
ref: Default enabled unprivileged_userns_clone -Security - Chat about Zorin - Zorin Forum
wiki/Rules-examples > Prioritize rules
i think this needs to be explained better? what's the diff between a 000 rule and, for example, a 000 rule with priority enabled?
re: wiki submissions: sorry, but i don't wish to fork the repo and do pulls (or have anything more to do with github than necessary due to f'n M$ ownership)
Beta Was this translation helpful? Give feedback.
All reactions