• ohshit604@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    15
    ·
    edit-2
    9 hours ago

    OpenSnitch is a nice for the desktop environment, deny by default and prompts the user when an application requests a open port, at first the prompts can get a little overwhelming given how many things want to connect to xyz server but eventually lightens up.

    • prenatal_confusion@feddit.org
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      2 hours ago

      I really dont like the idea that a program on my local os doing things I don’t want it to do and the only thing stopping it is a software firewall.

      If you don’t trust the platform then you shouldn’t be using it. No bandaid like antivirus or firewall can help with that.

      • ohshit604@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        1 hour ago

        If you don’t trust the platform then you shouldn’t be using it. No bandaid like antivirus or firewall can help with that.

        I mean, if you don’t have a firewall on the device itself then your router certainly does, your device requests xyz port open your router will oblige with UPNP unless explicitly denied.

        The on-device firewall is just an extra step before it hits your router’s firewall anyways, I’m sure your devices have made contact with servers behind your back that you know nothing about.

    • Jason2357@lemmy.ca
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      3
      ·
      9 hours ago

      Its a little annoying on Linux but I wonder what it would be like on Windows.

      • ohshit604@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        3 hours ago

        The firewall is annoying? I would argue and say the firewall is protecting your computer from connecting to a rouge server, annoying or not it’s better than some douche abusing an exploit in your system.

        • lemonuri@infosec.pub
          link
          fedilink
          English
          arrow-up
          1
          ·
          4 hours ago

          Simplewall works great, it’s open source. And yes, there are a couple of million requests made by windows apps alone, which are completely fine to block. Simplewall also blocks windows telemetry. I have to use win11 at work and it’s an absolute ahitstorm of network requests that you don’t get to see when using windows firewall.

          Glaswire looks beautiful and functions well, but you will hit the paywall after a couple of weeks (I used this on the around 2010 I think)