apparmor.d
shadowsocks-rust
apparmor.d | shadowsocks-rust | |
---|---|---|
24 | 23 | |
365 | 7,835 | |
- | 1.2% | |
9.9 | 9.5 | |
5 days ago | 5 days ago | |
Go | Rust | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
apparmor.d
-
Sandboxing All the Things with Flatpak and BubbleBox
If anyone want to look further into sandboxing applications on Linux, you can also look at AppArmor and the sandboxing features built into systemd.
I love this repository for bases for AppArmor profiles[1], really good work. Never found a repository as good for systemd, but there are a few around.
[1] https://github.com/roddhjav/apparmor.d
- Anyone writes AppArmor profiles?
-
AppArmor and Profile Inheritance
Then, categorize all your script zoo: maybe some script group want to only read the data, while some need to write, maybe one group needs to use certain set of binaries, and other group - others.
- How would you sandbox shady PDF files from the internet?
-
OpenSUSE Tumbleweed Security – firewall, fail2ban, apparmor
You could utilize some profiles from apparmor.d repo, but you should be slightly aware how it works (disclaimer: I'm the contributor).
-
FOSS alternative to Teamviewer
Regardless, I wrote an AppArmor profile so it couldn't happen again.
-
Cybersec student here. How it possible that Linux is more secure than Windows?
Maintainer's response.
-
MacOS-like support for directory access control on Linux, *per app*
There is a project in early development: apparmor.d. Adopting some or all profiles will do the job. To use it smoothly, basic AppArmor knowledge is required. (I'm the contributor)
-
AppArmor and Firefox: Does it actually work?
Dependent on the OS and Firefox distribution. I can advertise profile that I co-maintain. It uses non-standard tunables, which will require some README reading to get them into the system.
-
SELinux VS AppArmor - go!
Red Hat based distros come preconfigured with a lot of SELinux policies. With AppArmor, you get basically nothing. There is a project I also contribute to from time to time, that gives you a lot more policies, but this is entirely out-of-tree (https://github.com/roddhjav/apparmor.d).
shadowsocks-rust
-
Wireguard blocked
Maybe with https://shadowsocks.org/
-
proton vpn in china
I am also in China right now and sorry to say that ProtonVPN hasn't worked at all for me.I downloaded four different VPN apps before departing from Europe and only Mullvad had worked since they implement a Shadowsocks bridge on some connections.
-
How to secure internet on an open Wi-Fi?
If the changing por trick work you can try shadowsocks or v2ray.
- China firewall and VPNs
-
Accessing home server outside securely and also from client apps
Use this: https://github.com/shadowsocks/shadowsocks-rust
- Recommended VPN?
- Wireguard is banned in China, anything I could do about it?
- last day on reddit
-
Flathub mirror for China?
For shadowsocks, you can download it from here: https://github.com/shadowsocks/shadowsocks-rust/releases/tag/v1.14.3, get the "shadowsocks-v1.14.3.x86_64-unknown-linux-gnu.tar.xz" file, and extract it. You should have the ssclient and you can use that in the terminal to connect with it. This seems to have instructions on how to use it
-
Staying Safe Online - A Resource Collection For Protesters and Activists
Fellow sub member /u/zenzebeat reports that https://shadowsocks.org/ still works fine albeit slow.
What are some alternatives?
kubernetes-ingress - NGINX and NGINX Plus Ingress Controllers for Kubernetes
outline-apps - Outline Client and Manager, developed by Jigsaw. Outline Manager makes it easy to create your own VPN server. Outline Client lets you share access to your VPN with anyone in your network, giving them access to the free and open internet.
UBUNTU20-CIS - Ansible role for Ubuntu 2004 CIS Baseline
openmptcprouter - OpenMPTCProuter is an open source solution to aggregate multiple internet connections using Multipath TCP (MPTCP) on OpenWrt
hardentools - Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
docker-wireguard
ssh-p2p - ssh p2p tunneling server and client
Cloak - A censorship circumvention tool to evade detection by authoritarian state adversaries
kloak - Keystroke-level online anonymization kernel: obfuscates typing behavior at the device level.
wstunnel - Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available
shadowsocks-gtk-rs - A desktop GUI frontend for shadowsocks-rust client implemented with gtk-rs.
quiche - 🥧 Savoury implementation of the QUIC transport protocol and HTTP/3