themighty1
commented
3 years ago @mgagnequebec , thank you for the suggestion. With some recent changes I made to how the filter string is parsed, it would be quite easy to implement what you are asking. It would be up to the user to type in a correct regular expression. We could then forward that regular expression to the python as-is to find matching strings.
mgagnequebec
Hello! This is my first entry. Been trying out opensnitch for a while and thought I could add a suggestion :)
Describe the bug When there are results in the list of recorded entries, user can notice that many unwanted information can clog the view. Especially when trying to analyze and find unknown or, suspicious requests. In that case, it is not always possible to use the filters because user does not know what he's looking for. But does know what he would like to get rid of. To make the list easier to browse.
To Reproduce Example: You browse the internet while opensnitch is recording. Then, after a while you start analyzing the recorded results and see many request to google and facebook. Those are making a lot of noise and what the user is looking for might be very subtle (but unknown). Trying to use the filter only allows to select what the user wants too see. It would be nice to add arguments like - facebook, -"*google" so that the list becomes easier to read without showing the entries entered (the matching terms entered)as "omitting filters"
Steps to reproduce the behavior:
Post error logs: There is no error for this suggestion :) but I could say "look at the available option in the filter field, they are allowing to select / isolate entries but not, removing entries"
Expected behavior (optional) Entering terms in the filter box, so that the list removes what is matching and being able to add multiple terms by separating them with commas. input example: (
- facebook*, -*google*,-*amazon*would make these matching entries disappear from the result list
Screenshots sorry no screenshot
OS (please complete the following information):