Firewall applet broke it was no longer able to create rules so switched to portmaster

Firewall applet broke it was no longer able to create rules so switched to postmaster which is working great except for one issue.

Elder Scrolls Online required a new rule and was experiencing issues with the launcher eventually no longer running with the firewall applet.

Was able to get everything working very well with Portmaster except Firestorm; runs fine with exceptions for all the parts of the program which are main, voice, sl plugin; will run fine for about 5 minutes and then the whole system will freeze up.

Have not isolated what the problem is yet and have not tried running it without portmaster. Firestorm viewer has full access and requires it to run so it should be fine. Still there is no reason Garuda should be freezing to the point of requiring a restart from running an app and this could be an exploit.

Have also noticed other strange behavior such as Dolphin locking up after some updates. Reinstalling all packages seems to work for a while but then things go back to being compromised. Firewall applet stays open still and seems to be compromised and being used remotely as an exploit. Also there are some other apps that open on system launch that were not opened and should not be running. One of which was KDE Connect which was removed from the system with no issues do to this. There also was a Geo location tool that could not be removed due to dependencies that is always running after restart that can be closed. Also Garuda accessibility is running. This seems to be bugs in dolphin or KDE that might be fixed with 6. There were some problems with this system; will be doing a fresh install soon; still might be helpful to close some security holes for someone else to look into these issues and report them to the proper teams as it seems rather complex.

Appreciate any help; looking forward to KDE6; not sure if will be able to test beta yet.

Much appreciated.

System:
Kernel: 6.7.4-hardened1-1-hardened arch: x86_64 bits: 64 compiler: gcc
v: 13.2.1 clocksource: tsc avail: hpet,acpi_pm parameters: pti=on
page_alloc.shuffle=1 BOOT_IMAGE=/@/boot/vmlinuz-linux-hardened
root=UUID=ee9d8e46-88f6-40bb-a345-3b374ebb4edb rw rootflags=subvol=@
quiet rd.luks.uuid=5d766ada-bbea-4479-b984-c5950293753b quiet
rd.udev.log_priority=3 vt.global_cursor_default=0 loglevel=3 ibt=off
Desktop: KDE Plasma v: 5.27.10 tk: Qt v: 5.15.12 info: frameworks
v: 5.115.0 wm: kwin_x11 vt: 2 dm: SDDM Distro: Garuda base: Arch Linux
Machine:
Type: Desktop Mobo: ASUSTeK model: A88XM-PLUS v: Rev X.0x
serial: <superuser required> part-nu: SKU uuid: <superuser required>
UEFI-[Legacy]: American Megatrends v: 3004 date: 04/14/2017
Battery:
Device-1: ps-controller-battery-1c:96:5a:c3:bb:50 model: N/A serial: N/A
charge: N/A status: full
CPU:
Info: model: AMD A10-7850K Radeon R7 12 Compute Cores 4C+8G bits: 64
type: MT MCP arch: Steamroller level: v2 built: 2014 process: GF 28nm
family: 0x15 (21) model-id: 0x30 (48) stepping: 1 microcode: 0x6003106
Topology: cpus: 1x cores: 4 smt: enabled cache: L1: 256 KiB
desc: d-4x16 KiB; i-2x96 KiB L2: 4 MiB desc: 2x2 MiB
Speed (MHz): avg: 3378 high: 3880 min/max: 1700/3700 boost: enabled
scaling: driver: acpi-cpufreq governor: performance cores: 1: 3811 2: 3880
3: 1956 4: 3867 bogomips: 29539
Flags: avx ht lm nx pae sse sse2 sse3 sse4_1 sse4_2 sse4a ssse3 svm
Vulnerabilities: <filter>
Graphics:
Device-1: AMD Vega 10 XL/XT [Radeon RX 56/64] vendor: XFX Pine
driver: amdgpu v: kernel arch: GCN-5 code: Vega process: GF 14nm
built: 2017-20 pcie: gen: 3 speed: 8 GT/s lanes: 16 ports: active: DP-3
empty: DP-1,DP-2,HDMI-A-1 bus-ID: 03:00.0 chip-ID: 1002:687f
class-ID: 0300
Display: x11 server: X.Org v: 21.1.11 with: Xwayland v: 23.2.4
compositor: kwin_x11 driver: X: loaded: amdgpu unloaded: modesetting
alternate: fbdev,vesa dri: radeonsi gpu: amdgpu display-ID: :0 screens: 1
Screen-1: 0 s-res: 1360x768 s-dpi: 96 s-size: 358x202mm (14.09x7.95")
s-diag: 411mm (16.18")
Monitor-1: DP-3 mapped: DisplayPort-2 model: Sharp HDMI built: 2008
res: 1360x768 hz: 60 dpi: 42 gamma: 1.2 size: 820x460mm (32.28x18.11")
diag: 940mm (37") ratio: 16:9 modes: max: 1920x1080 min: 720x400
API: EGL v: 1.5 hw: drv: amd radeonsi platforms: device: 0 drv: radeonsi
device: 1 drv: swrast surfaceless: drv: radeonsi x11: drv: radeonsi
inactive: gbm,wayland
API: OpenGL v: 4.6 compat-v: 4.5 vendor: amd mesa v: 24.0.1-arch1.1
glx-v: 1.4 direct-render: yes renderer: AMD Radeon RX Vega (radeonsi vega10
LLVM 16.0.6 DRM 3.57 6.7.4-hardened1-1-hardened) device-ID: 1002:687f
memory: 7.81 GiB unified: no
API: Vulkan v: 1.3.276 layers: 7 device: 0 type: discrete-gpu name: AMD
Radeon RX Vega (RADV VEGA10) driver: mesa radv v: 24.0.1-arch1.1
device-ID: 1002:687f surfaces: xcb,xlib device: 1 type: cpu name: llvmpipe
(LLVM 16.0.6 256 bits) driver: mesa llvmpipe v: 24.0.1-arch1.1 (LLVM
16.0.6) device-ID: 10005:0000 surfaces: xcb,xlib
Audio:
Device-1: AMD FCH Azalia vendor: ASUSTeK AM1I-A driver: snd_hda_intel
v: kernel bus-ID: 00:14.2 chip-ID: 1022:780d class-ID: 0403
Device-2: AMD Vega 10 HDMI Audio [Radeon 56/64] driver: snd_hda_intel
v: kernel pcie: gen: 3 speed: 8 GT/s lanes: 16 bus-ID: 03:00.1
chip-ID: 1002:aaf8 class-ID: 0403
API: ALSA v: k6.7.4-hardened1-1-hardened status: kernel-api tools: N/A
Server-1: PipeWire v: 1.0.3 status: active with: 1: pipewire-pulse
status: active 2: wireplumber status: active 3: pipewire-alsa type: plugin
4: pw-jack type: plugin tools: pactl,pw-cat,pw-cli,wpctl
Network:
Device-1: Realtek RTL8111/8168/8211/8411 PCI Express Gigabit Ethernet
vendor: ASUSTeK H81M-C driver: r8169 v: kernel pcie: gen: 1 speed: 2.5 GT/s
lanes: 1 port: d000 bus-ID: 06:00.0 chip-ID: 10ec:8168 class-ID: 0200
IF: enp6s0 state: up speed: 1000 Mbps duplex: full mac: <filter>
Info: services: NetworkManager,systemd-timesyncd
Drives:
Local Storage: total: 1.14 TiB used: 33.37 GiB (2.9%)
SMART Message: Unable to run smartctl. Root privileges required.
ID-1: /dev/sda maj-min: 8:0 vendor: Samsung model: SSD 840 PRO Series
size: 238.47 GiB block-size: physical: 512 B logical: 512 B speed: 6.0 Gb/s
tech: SSD serial: <filter> fw-rev: 3B0Q scheme: MBR
ID-2: /dev/sdb maj-min: 8:16 vendor: Samsung model: SSD 860 EVO 1TB
size: 931.51 GiB block-size: physical: 512 B logical: 512 B speed: 6.0 Gb/s
tech: SSD serial: <filter> fw-rev: 4B6Q scheme: GPT
Partition:
ID-1: / raw-size: 238.46 GiB size: 238.46 GiB (100.00%)
used: 33.37 GiB (14.0%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-5d766ada-bbea-4479-b984-c5950293753b
ID-2: /home raw-size: 238.46 GiB size: 238.46 GiB (100.00%)
used: 33.37 GiB (14.0%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-5d766ada-bbea-4479-b984-c5950293753b
ID-3: /var/log raw-size: 238.46 GiB size: 238.46 GiB (100.00%)
used: 33.37 GiB (14.0%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-5d766ada-bbea-4479-b984-c5950293753b
ID-4: /var/tmp raw-size: 238.46 GiB size: 238.46 GiB (100.00%)
used: 33.37 GiB (14.0%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-5d766ada-bbea-4479-b984-c5950293753b
Swap:
Kernel: swappiness: 133 (default 60) cache-pressure: 100 (default) zswap: no
ID-1: swap-1 type: zram size: 31.3 GiB used: 0 KiB (0.0%) priority: 100
comp: zstd avail: lzo,lzo-rle,lz4,lz4hc,842 max-streams: 4 dev: /dev/zram0
Sensors:
System Temperatures: cpu: 22.1 C mobo: N/A gpu: amdgpu temp: 40.0 C
mem: 34.0 C
Fan Speeds (rpm): N/A gpu: amdgpu fan: 396
Info:
Memory: total: 32 GiB available: 31.3 GiB used: 2.41 GiB (7.7%)
Processes: 240 Power: uptime: 6m states: freeze,mem suspend: deep
avail: s2idle wakeups: 0 services: org_kde_powerdevil,
power-profiles-daemon, upowerd Init: systemd v: 255 default: graphical
tool: systemctl
Packages: pm: pacman pkgs: 1480 libs: 477 tools: octopi,paru Compilers:
clang: 16.0.6 gcc: 13.2.1 Shell: garuda-inxi default: Bash v: 5.2.26
running-in: konsole inxi: 3.3.33
Garuda (2.6.23-1):
System install date:     2023-03-11
Last full system update: 2024-02-17
Is partially upgraded:   No
Relevant software:       snapper NetworkManager dracut
Windows dual boot:       <superuser required>
Failed units:

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.