Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add generic connection drop filtering #110

Open
TechnikEmpire opened this issue Jul 23, 2017 · 0 comments
Open

Add generic connection drop filtering #110

TechnikEmpire opened this issue Jul 23, 2017 · 0 comments
Assignees
@TechnikEmpire
Labels
enhancement

Comments

@TechnikEmpire
Copy link
Owner

Add a filtering language to the core diverter that can detect flows to certain connections and just drop them.

Probably should just use the suricata format so we can consume rules from places like emerging threats. However, if this is too complex for quick release, just start off with something sufficient for catching and blocking connections made by the host OS. The reason for this goal is because Windows 10, despite locking down security and privacy settings, makes constant connections to MS servers and partners. For privacy sake, we want to have binary control of these. Must be able to permit Windows update communication.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@TechnikEmpire TechnikEmpire

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@TechnikEmpire