opensnitch
ufw-docker-automated
| opensnitch | ufw-docker-automated | |
|---|---|---|
| 3 | 6 | |
| 396 | 190 | |
| - | - | |
| 0.0 | 1.8 | |
| over 2 years ago | 6 months ago | |
| Python | Go | |
| GNU General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
opensnitch
-
OpenSnitch is a GNU/Linux port of the Little Snitch application firewall
> Besides, why would I want to Wireshark my browser?
https://github.com/gustavo-iniguez-goya/opensnitch/issues/21
https://nullsweep.com/why-is-this-website-port-scanning-me/
https://user-images.githubusercontent.com/2742953/84960681-9...
- Librewolf Like Firefox But Better Linux App Pick
- is there a firewall for linux that is like windows's simple firewall? where i get a notification if anything wants to connect to the inet, and i can either permamently allow or disallow it?
ufw-docker-automated
-
Docker developers discuss changes in how ports are to be forwarded into containers
I know it looks daunting, but it's just putting ufw-style rules into your docker-compose files. There are other solutions like ufw docker automated , but they seem even more annoying to setup.
-
Securing a VPS running docker
Or this for a more automated one: https://github.com/shinebayar-g/ufw-docker-automated
-
Stay safe with Docker and firewall
This is nothing new and a known issue for a very long time with docker and ufw and easily sorted by using this workaround.
-
Docker overrides UFW rules
Known issue for years but this and this helps.
-
A Docker footgun led to a vandal deleting NewsBlur's MongoDB database
Luckily it was about as hardened as regular ftp can be, but I noticed the problem when my service wasn't able to log in as the (very low) connection limit was filled by someone attempting passwords.
I've been using https://github.com/shinebayar-g/ufw-docker-automated to make docker compliant with UFW, and defining firewall rules as labels for the containers.
-
Checklist for hardening a linux VPS?
I found this script, but haven't had the time to try it.
What are some alternatives?
ufw-stats - ufw-stats: Show ufw actions since boot, with ip address information from RIPE database.
ufw-docker - To fix the Docker and UFW security flaw without disabling iptables
iptables-ddns - Using domain name on IPtables. Keep updated firewall rules from dynamic DNS (DDNS).
JShielder - Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
suzieq - Using network observability to operate and design healthier networks
How-To-Secure-A-Linux-Server - An evolving how-to guide for securing a Linux server.
IVRE - Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
iptables-docker - A bash solution for docker and iptables conflict
firehol - A firewall for humans...
whalewall - Automate management of firewall rules for Docker containers
plonky - a Perl program to generate a conky rc file
debian_bridge - CLI utility to run .deb packages on non-debian distros using docker