18 comments

[ 4.9 ms ] story [ 70.2 ms ] thread
I'm no longer a Mac user, but LS was an essential part of my system where I was. Does anyone know of a similar product for Linux?
There is OpenSnitch ( https://github.com/evilsocket/opensnitch ) but I'm not sure how well it compares?
This app is a decent reason to add signature checking to distros. Though until we're off of X11 the application doing the connecting can just press the button on OpenSnitch itself!

Unless you're on Wayland, OpenSnitch is totally vulnerable. One workaround would be to have OpenSnitch stop the requesting process before displaying the prompt, but if there's a configuration panel any application can just add the exception ahead of time anyway.

Not much in the realm of Linux, to be honest. You'd probably get more security maintaining a SELinux setup on your system and running a hardened kernel.
Do you have any reference material that goes more in depth?
That's a different concern, though. Or does SELinux allow you to specify "process X may speak to domain Y with HTTP, but not to any other domains"?
(comment deleted)
(comment deleted)
Darn, I just bought LS3 about 2 months ago and upgrading costs 25 euros.
Just bought a copy this morning funnily enough.
:)
So many security products to try, hard to juggle them all
This company does not really care about it's customers. I purchased in the beginning of May. 6 weeks later and 0 updates, the rev the product to 4 and they expect me to pay for an upgrade. Yeah no thanks, not a way to treat new customers.