sqrtminusone/dotfiles
1
0
Fork 0
mirror of https://github.com/SqrtMinusOne/dotfiles.git synced 2025-12-11 19:45:25 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat(guix): try opensnitch

Browse source
This commit is contained in:
Pavel Korytov 2023-08-09 17:55:50 +05:00
parent 9a52b6966c
commit 7ba974a044
2 changed files with 50 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
.config/shepherd/init.scm
View file

@ -104,6 +104,20 @@
#:start (make-forkexec-constructor '("vnstatd" "-n")) #:start (make-forkexec-constructor '("vnstatd" "-n"))
#:stop (make-kill-destructor))) #:stop (make-kill-destructor)))
(define opensnitchd
(make <service>
#:provides '(opensnitchd)
#:respawn? #t
#:start (make-forkexec-constructor '("sudo" "opensnitchd"))
#:stop (make-kill-destructor)))
(define opensnitch-ui
(make <service>
#:provides '(opensnitch-ui)
#:respawn? #t
#:start (make-forkexec-constructor '("sudo" "opensnitch-ui"))
#:stop (make-kill-destructor)))
(register-services (register-services
mpd mpd
sqrt-data-agent-mpd sqrt-data-agent-mpd
@ -119,7 +133,9 @@
davmail davmail
;; xmodmap ;; xmodmap
nm-applet nm-applet
vnstatd) vnstatd
opensnitchd
opensnitch-ui)
(action 'shepherd 'daemonize) (action 'shepherd 'daemonize)
@ -136,4 +152,6 @@
davmail davmail
; xmodmap ; xmodmap
nm-applet nm-applet
vnstatd)) vnstatd
opensnitchd
opensnitch-ui))

32
Desktop.org
View file

@ -4046,6 +4046,30 @@ Run my [[file:Guix.org::*OpenVPN][OpenVPN setup]]. Not lauching this automatiall
#:start (make-forkexec-constructor '("vnstatd" "-n")) #:start (make-forkexec-constructor '("vnstatd" "-n"))
#:stop (make-kill-destructor))) #:stop (make-kill-destructor)))
#+end_src #+end_src
** opensnitch
[[https://github.com/evilsocket/opensnitch][opensnitch]] is a linux firewall.
Install it via nix:
#+begin_src bash :tangle no
nix-env -I opensnitchd opensnitch-ui
#+end_src
#+begin_src scheme
(define opensnitchd
(make <service>
#:provides '(opensnitchd)
#:respawn? #t
#:start (make-forkexec-constructor '("sudo" "opensnitchd"))
#:stop (make-kill-destructor)))
(define opensnitch-ui
(make <service>
#:provides '(opensnitch-ui)
#:respawn? #t
#:start (make-forkexec-constructor '("sudo" "opensnitch-ui"))
#:stop (make-kill-destructor)))
#+end_src
** Shepherd config ** Shepherd config
For some reason, running start on a one-shot service started to hang shepherd, not sure why... Turining these off for now. For some reason, running start on a one-shot service started to hang shepherd, not sure why... Turining these off for now.
@ -4066,7 +4090,9 @@ Register services:
davmail davmail
;; xmodmap ;; xmodmap
nm-applet nm-applet
vnstatd) vnstatd
opensnitchd
opensnitch-ui)
#+end_src #+end_src
Daemonize shepherd Daemonize shepherd
@ -4089,7 +4115,9 @@ Run services
davmail davmail
; xmodmap ; xmodmap
nm-applet nm-applet
vnstatd)) vnstatd
opensnitchd
opensnitch-ui))
#+end_src #+end_src
* Guix settings * Guix settings
Other desktop programs I use are listed below. Other desktop programs I use are listed below.