evilsocket/opensnitch v1.6.0-rc.1 on GitHub

What's new

Added option to configure system firewall (nftables) from the GUI (d9e0c59):
- Apply global policies (for example: drop input while allowing output traffic).
- Add exclusiones graphically (for example to allow certain services like VPN)
- Open ports when the default policy is DROP.
The GUI doesn't allow yet to configure all the options. However you can edit the configuration file manually if you need to, it's a quite complete frontend to nftables.
Documentation: https://github.com/evilsocket/opensnitch/wiki/System-rules
Please, note that this is a WIP feature. If you find any bug, please open a new issue, or drop a comment in this post: #592 thank you!
Added option to send events to Syslog (7b610c0):
- Documentation: https://github.com/evilsocket/opensnitch/wiki/SIEM-integration
Also a WIP feature. If you find any bug, please open a new issue, or drop a comment in this post: #638 thank you!
Add eBPF based DNS lookup hooks (a4b7f57) by @calesanz !
- Fixed loading uprobes when libc has the symbols stripped @JeremyMahieu

Better DE integration: b49de30
There's a new rule field (Description), which you can use to describe what a rule does (3c524c1). The rules view now only displays the relevant fields.
Fix a minor typo by @markozajc in #610
Add systemd-resoved listener by @calesanz in #582
Allow building on systems using musl by @cinerea0 in #625
Allow to configure firewall rules from the GUI by @gustavo-iniguez-goya in #660
Fixes attachment of dns uprobes when libc is stripped of symbol names by @JeremyMahieu in #666

Full Changelog: v1.5.0...v1.6.0-rc.1

(NOTE: if the daemon doesn't autostart, enable it: $ sudo systemctl enable opensnitch; sudo systemctl start opensnitch)

(IMPORTANT NOTE (Ubuntu 22.04 users): See this comment after installing the GUI: #647 (comment))

(If the above packages complain about dependencies, use these ones)

[21/06/2022 11:00 NOTE: GUI packages regenerated because of this #671 ]