Wulfy—Speaker to the machines18h ago
nixCraft 🐧
Little Snitch for Linux https://obdev.at/products/littlesnitch-linux/index.html Every time an application on your computer opens a network connection, it does so quietly, without asking. Little Snitch for Linux makes that activity visible and gives you the option to do something about it. You can see exactly which applications are talking to which servers, block the ones you didn't invite, and keep an eye on traffic history and data volumes over time https://github.com/obdev/littlesnitch-linux
Apr 9 at 9:07amWeb
Show threadnixCraft 🐧2d ago
FYI, UI and client side is in Rust and open source but its core daemon on Linux is not. This app is from same authors who wrote macOS/OS X version. So use with caution as it is not 100% open source like many games you play on Linux.
Show threadsqualouJenkins2d ago
@nixCraft OpenSnitch is open front to back.
Maybe not as nice but has been doing the job for years.
[edit : grammar]
Show threadRegendans2d ago

@squalouJenkins @nixCraft Happy opensnitch user here. 🥳

Packaged :
https://repology.org/project/opensnitch/versions

Source code : https://github.com/evilsocket/opensnitch

opensnitch package versions - Repology

List of package versions for project opensnitch in all repositories

Show threadadb2d ago
@regendans @squalouJenkins @nixCraft I have also been a happy OpenSnitch user, see no reason to recommend something with proprietary crap when there are good alternatives, if it is not full free software that is a huge disadvantage compared with OpenSnitch
Show threadPeter B.2d ago

@nixCraft Finally!

I miss that see-which-app-opens-which-connection-when and filter it on Linux.
(I remember having a program on Windows 2000 which did exactly that: a personal firewall with a GUI).

Show threadJL Johnson 1d ago
@p3ter @nixCraft I bet that app was Zone Alarm? IFLd that and honestly that era might have been peak Windows
Show threadRandom Guy16h ago
@User47 @p3ter @nixCraft Blackice Defender was a good option back then
Show threadJL Johnson 14h ago
@randomdaz @p3ter @nixCraft is that the thing that you could install stuff and do whatever you wanted and upon restart it was back to pristine install? I remember folks losing their minds when AOL instant messenger disappeared on high school computer lab PC restarts. Also, remember computer labs? Ha!
Show threadRandom Guy5h ago

@User47 @p3ter @nixCraft

Actually it looks like my memory is failing. It was an inbound firewall that allowed you to easily block based on events

Show threadPeter B.4h ago

@randomdaz @User47 @nixCraft Funny, now that you ask: I also have to lookup the name of the program.

It was NOT Zonealarm or BlackICE though 😄

Show threadPeter B.3h ago

@User47 @nixCraft Yeah, Win2000 was actually my most favorite. Stable, no bullshit - and it worked.

After that... hm... => me switching to #ubuntu for good on /my/ machines.

Win10 was when I officially told all my customers I quit Windows support. Also for good. And sanity and personal health.

Show threadAnomaly2d ago

I bought a license for a MacBook many years ago, but I no longer use it. Now I only use Ubuntu. I wonder if the license is compatible with Little Snitch for Linux.

or maybe it's free for linux

Show threadsqualouJenkins2d ago
@x or you can use little snitch to forbid access to its own license-check server. Used to work on macos :)
Show threadDMTom1d ago
@squalouJenkins @x trying that now;) it’s in demo mode though at the moment, think that’s how they fixed it now, but will see;)
Show threadsiquis2d ago
@nixCraft I have the MacOS version, works a treat!
Show threadAnomaly2d ago
@siquis
Thanks, I'll try
Show threadsiquis2d ago
@x I still use it in a Macbook, I'll have to try the linux version in my Linux Mint laptop.
Show threadTrimTab 🇺🇦2d ago
@nixCraft wow, where has this been all my life?? I use nethogs but its not ideal, will give this a try! Thanks!!!
Show threadMosen2d ago
@nixCraft for all the extra features that little snitch has, the only one I care about is the better UX than opensnitch. Opensnitch could close that gap fairly easily really if they just reflect on the usage patterns.
Show threadkcp2d ago
@nixCraft be nice if one can run a gateway / proxy device to the rest of the network
Show threadpetra2d ago
@nixCraft Instead of adding a small comment that most people probably won't see, the original post should include a big warning that this app is not open-source and so there is no way of knowing what it will do on your system.
Show threadAlbirew1d ago
@ten15bit
@nixCraft
OpenSnitch is open source iirc...
Show threadpetra1d ago
@Albirew Yes, I was referring to the original post, which was about Little Snitch.
Show threadAre we all alone?2d ago
@nixCraft it killed my openSuse :(
Show threadjer2d ago

@nixCraft

And you can get started right there and immediately block #claude and #anthropic !

*plonk*

Show threadArthfach 🐻1d ago
@nixCraft This runs really well; I just need to get on writing an OpenRC service for it instead of their single systemd provided one.
Show threadFookin prawn 🇳🇱1d ago
@nixCraft OpenSnitch FTW
Show threadNazo1d ago

@nixCraft And OpenSnitch makes things actually have to get permission to do it. (You can set it to always allow/reject/drop or to do so for an interval.)

I've found a surprising number of things making connections they really shouldn't be. One that scares me is many thumbnail engines will open URLs inside things... (They're not browsers. They're not up on the latest security issues/etc, they don't have ad blockers or privacy guards, etc etc. They should not be allowed to go online ever!)

Kind of bugs me how many things just don't even try to hide telemetries that the user doesn't get to opt out of. Many game engines are bad about this for example. They just phone home and there is no setting in the game to turn it off.