We have moved to a new Sailfish OS Forum. Please start new discussions there.
41

Network monitor & personal firewall

asked 2013-12-26 16:09:19 +0200

Erlend gravatar image

updated 2013-12-26 16:41:21 +0200

AL13N gravatar image

All too often, applications send my personal data to their server, be it the content of my address book, my location or other private data.

A unique distunguishing feature for Jolla could be a built- in network monitor similar to the "little snitch" mac application, that allows you to intercept every network request, and is very configurable. The network monitor would allow me to intercept unwanted connection attempts and to decide how to proceed. It would have realtime traffic information and powerful yet simple options for analyzing bandwidth, traffic totals, connectivity status and more.

edit retag flag offensive close delete

Comments

2

That's something I am looking for as well! Actually I expect Sailfish to assign rights with a reasonable granularity to each and every app, e.g. address book, location data, data services, cam/mic, etc. It is important to see who is talking how often, but even more interesting what it is about. Unfortunately its often encrypted. Although a monitoring tool is more for the geeks, geeks will do the job for the common user and report their findings.

Stefanix ( 2014-02-06 15:52:06 +0200 )edit

is there already a possibility to monitor network connections?

domnk ( 2014-04-01 23:13:24 +0200 )edit

are there any news for such a network monitor? i'd really like to have such a feature

MacManus ( 2014-07-10 23:46:08 +0200 )edit

2 Answers

Sort by » oldest newest most voted
5

answered 2014-10-18 20:54:11 +0200

melg01 gravatar image

updated 2014-10-19 15:43:14 +0200

There is quite a powerful way of monitoring your network connections. In Warehouse/Openrepos enable the repository from NielDK and install the apps "redis" (section Utilities) and "ntopng" (section Network). Then start the redis server and the ntopng server (as root user, in the mentioned order):

# redis-server &
# ntopng -i wlan0 -i rmnet0 &

Now you got the classical Ntop-NG "network sniffing" engine running in the background, storing its data into redis, and you can watch the results connecting your local webbrowser to the ntop webserver port 3000: either connect to 127.0.0.1:3000 locally on your Jolla (although the screen is way too small) or connect from some external browser to your Jollas IP-Nr:3000 and enjoy.

Each parameter "-i interface-name" describes a network interface you want to sniff. Use the ifconfig command to identify yours: wlan0 stands usually for the wireless, rmnet0 for the mobile phone connection.

Of course, a native and easier to handle Sailfish app just displaying the realtime and/or historized flows like good old ntop did on the console would be greatly appreciated as well.

P.S.: in case NielDK would be reading this... thanks for all the work you do, and could you maybe actualize your ntopng package to the newest version and compile it with ip-geolocation...?

edit flag offensive delete publish link more

Comments

1

Yes, redis and ntopng is quite good (it does support GeoIP btw) I am currently building new version of both redis and ntopng (geoip is already done), You will find the builds on my pages on merproject - until I move them to openrepos later. https://build.merproject.org/project/show/home:nielnielsen

Nieldk ( 2014-10-19 12:24:44 +0200 )edit

@melg01 On starting the second server i am getting error:

ERROR: could not open pcap file: rmnet0: No such file or directory

Also when entering 127.0.0.1:3000 into the browser i am getting an error. Cannot connect to server because its busy.

Running the first process states the port that can now accept a connection mine was 6379 and not 3000, now it connects but i am getting the following errors:

-ERR wrong number of arguments for 'get' command -ERR unknown command 'Host:' -ERR unknown command 'User-Agent:' -ERR unknown command 'Accept:' -ERR unknown command 'Accept-Language:' -ERR unknown command 'Accept-Encoding:' -ERR unknown command 'Connection:' -ERR unknown command 'Upgrade-Insecure-Requests:' -ERR unknown command 'Cache-Control:'

@Nieldk do you have more user help/ guide material. I was trying to connect using a firefox browser app on the actual phone that is running the services.

DarkTuring ( 2016-11-10 03:52:09 +0200 )edit
0

answered 2013-12-26 16:43:06 +0200

AL13N gravatar image

As a partial response, according to community wiki someone is working on a network monitor. IMHO the personal firewall is really a second unrelated feature.

edit flag offensive delete publish link more
Login/Signup to Answer

Question tools

Follow
4 followers

Stats

Asked: 2013-12-26 16:09:19 +0200

Seen: 1,530 times

Last updated: Oct 19 '14