search

gustavo-iniguez-goya / opensnitch

OpenSnitch is a GNU/Linux application firewall
GNU General Public License v3.0
395 stars 20 forks source link

debian buster fail #107

Closed mexjerry closed 3 years ago

mexjerry commented 3 years ago

Hey Linux deb 4.19.0-13-amd64 #1 SMP Debian 4.19.160-2 (2020-11-28) x86_64 GNU/Linux Installed via: sudo dpkg -i opensnitch.deb python3-opensnitch-ui.deb; sudo apt -f install

<opensnitch.service - OpenSnitch is a GNU/Linux application firewall. Loaded: loaded (/lib/systemd/system/opensnitch.service; enabled; vendor preset: enabled) Active: active (running) since Mon 2020-12-21 07:09:31 CST; 38min ago Docs: https://github.com/gustavo-iniguez-goya/opensnitch/wiki Process: 29140 ExecStartPre=/bin/mkdir -p /etc/opensnitchd/rules (code=exited, status=0/SUCCESS) Main PID: 29141 (opensnitchd) Tasks: 15 (limit: 4915) Memory: 30.1M CGroup: /system.slice/opensnitch.service └─29141 /usr/bin/opensnitchd -rules-path /etc/opensnitchd/rules

Dec 21 07:09:31 deb systemd[1]: Starting OpenSnitch is a GNU/Linux application firewall.... Dec 21 07:09:31 deb systemd[1]: Started OpenSnitch is a GNU/Linux application firewall.. Dec 21 07:09:31 deb opensnitchd[29141]: [2020-12-21 13:09:31] IMP Starting opensnitch-daemon v1.3.0 Dec 21 07:09:31 deb opensnitchd[29141]: [2020-12-21 13:09:31] INF Loading rules from /etc/opensnitchd/rules ... Dec 21 07:09:31 deb opensnitchd[29141]: [2020-12-21 13:09:31] ERR Error parsing configuration /etc/opensnitchd/default-config.json: unexpected end of JSON input Dec 21 07:09:31 deb opensnitchd[29141]: [2020-12-21 13:09:31] INF Process monitor method /proc Dec 21 07:09:31 deb opensnitchd[29141]: [2020-12-21 13:09:31] ERR Error parsing firewall configuration /etc/opensnitchd/system-fw.json: unexpected end of JSON input Dec 21 07:09:31 deb opensnitchd[29141]: [2020-12-21 13:09:31] INF Running on netfilter queue #0 ...>

ls -all /etc/opensnitchd/ total 20 drwxr-xr-x 3 root root 4096 Dec 21 07:07 . drwxr-xr-x 121 root root 12288 Dec 21 07:07 .. drwxr-xr-x 2 root root 4096 Dec 21 07:07 rules

ls -all /etc/opensnitchd/rules/ total 8 drwxr-xr-x 2 root root 4096 Dec 21 07:07 . drwxr-xr-x 3 root root 4096 Dec 21 07:07 ..

KDE gui fail: opensnitch_ui_fail thanks

gustavo-iniguez-goya commented 3 years ago

Hi @mexjerry , mmh.. that's reaaally weird, you should have 2 .json files under /etc/opensnitchd/

$ ls -l
ls -l etc/opensnitchd/
total 8
-rw-r--r--. 1 ga ga 262 dic 16 01:15 default-config.json
-rw-r--r--. 1 ga ga 318 dic 16 01:15 system-fw.json

Can you unpack the .deb file and see if the .json files exists? 

$ dpkg-deb -R opensnitch_1.3.0-1_amd64.deb daemon
$ ls -l daemon/etc/opensnitchd/

or: dpkg --contents opensnitch_1.3.0-1_amd64.deb |grep opensnitchd

By the way, don't launch the GUI as root, launch it with your regular user (without sudo).

mexjerry commented 3 years ago

from the dpkg-deb -R: ls -l daemon/etc/opensnitchd/ total 8 -rw-r--r-- 1 jerry jerry 262 Dec 15 18:15 default-config.json -rw-r--r-- 1 jerry jerry 318 Dec 15 18:15 system-fw.json

If I launch opensnitch-ui from cli or application launcher as jerry, I see nothing, am able to see its running via ps ax, but no ui, if I launch via sudo, the ui comes up as shown, and indicates not running. thanks

gustavo-iniguez-goya commented 3 years ago

ok, let's start over :)

please, execute the following commands and paste the output here:

$ sudo dpkg -i opensnitch_1.3.0-1_amd64.deb $ pgrep -a opensnitchd

mexjerry commented 3 years ago

copy default-config and system-fw.json to /etc/opensnitch, systemctl restart opensnitch, opensnitch ui pops open

opensnitch.service - OpenSnitch is a GNU/Linux application firewall. Loaded: loaded (/lib/systemd/system/opensnitch.service; enabled; vendor preset: enabled) Active: active (running) since Mon 2020-12-21 10:50:47 CST; 2min 1s ago Docs: https://github.com/gustavo-iniguez-goya/opensnitch/wiki Process: 5162 ExecStartPre=/bin/mkdir -p /etc/opensnitchd/rules (code=exited, status=0/SUCCESS) Main PID: 5163 (opensnitchd) Tasks: 14 (limit: 4915) Memory: 29.0M CGroup: /system.slice/opensnitch.service └─5163 /usr/bin/opensnitchd -rules-path /etc/opensnitchd/rules

Dec 21 10:50:47 deb systemd[1]: Starting OpenSnitch is a GNU/Linux application firewall.... Dec 21 10:50:47 deb systemd[1]: Started OpenSnitch is a GNU/Linux application firewall.. Dec 21 10:50:47 deb opensnitchd[5163]: [2020-12-21 16:50:47] IMP Starting opensnitch-daemon v1.3.0 Dec 21 10:50:47 deb opensnitchd[5163]: [2020-12-21 16:50:47] INF Loading rules from /etc/opensnitchd/rules ...

No errors Thanks

gustavo-iniguez-goya commented 3 years ago

ok, so now you can see connections on the GUI? and pop-ups asking to allow/deny apps?

mexjerry commented 3 years ago

yes, all seems good now, after copying the files, manually, from daemon/etc/opensnitchd/ to /etc/opensnitch/ ui opens and I see a very long list of events. Thanks