this post was submitted on 03 Feb 2025
54 points (98.2% liked)

Linux

8654 readers
51 users here now

Welcome to c/linux!

Welcome to our thriving Linux community! Whether you're a seasoned Linux enthusiast or just starting your journey, we're excited to have you here. Explore, learn, and collaborate with like-minded individuals who share a passion for open-source software and the endless possibilities it offers. Together, let's dive into the world of Linux and embrace the power of freedom, customization, and innovation. Enjoy your stay and feel free to join the vibrant discussions that await you!

Rules:

  1. Stay on topic: Posts and discussions should be related to Linux, open source software, and related technologies.

  2. Be respectful: Treat fellow community members with respect and courtesy.

  3. Quality over quantity: Share informative and thought-provoking content.

  4. No spam or self-promotion: Avoid excessive self-promotion or spamming.

  5. No NSFW adult content

  6. Follow general lemmy guidelines.

founded 2 years ago
MODERATORS
MigratingtoLemmy@lemmy.world
54
httptap: View HTTP/HTTPS requests made by any Linux program (github.com)
submitted 1 day ago by mox@lemmy.sdf.org to c/linux@lemmy.world
5 comments fedilink hide all child comments
 

I haven't used this yet, but the design described in the readme makes it look very convenient compared to the usual array of tools required.

top 5 comments
sorted by: hot top controversial new old
[–] jlh@lemmy.jlh.name 4 points 1 day ago

Requires using its custom certificate authority. Nice for scraping without root access, but it won't work for all programs. Openssl injection/ebpf is more flexible, but I'm not sure if there's a tool that can do that.

[–] sbv@sh.itjust.works 5 points 1 day ago

When you run httptap -- , httptap runs in an isolated network namespace, injecting a certificate authority created on-the-fly in order to decrypt HTTPS traffic. Here is the process in detail:

In linux, there is a kernel API for creating and configuring network interfaces. Conventionally, a network interface would be a physical ethernet or WiFi controller in your computer, but it is possible to create a special kind of network interface called a TUN device. A TUN device shows up to the system in the way that any network interface shows up, but any traffic written to it will be delivered to a file descriptor held by the process that created it. Httptap creates a TUN device and runs the subprocess in an environment in which all network traffic is routed through that device.

[–] Allero@lemmy.today 1 points 1 day ago* (last edited 1 day ago)

If you want a more comprehensive overview of your traffic and the ability to set firewall rules to block specific sites, I found Safing Portmaster to be a great option.

You also get filter lists, ability to tweak connections made by different apps, and, as a paid option, connect to a Tor-like network where every app van be designated its own exit node, at the speed of about 60mbits/s last time I checked (currently not using this option).

[–] callcc@lemmy.world 3 points 1 day ago

Sounds very handy!

[–] x00z@lemmy.world 1 points 1 day ago

Thanks for sharing. On Windows I always liked Fiddler for this. But I haven't found a decent alternative yet.