Re: ZoneAlarm-type firewall for Linux?

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMAlexander Henry at <-
.M 
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: Paul Dickson
Date:  
To: plug-discuss
Subject: Re: ZoneAlarm-type firewall for Linux?
On Mon, 08 May 2006 23:36:26 -0700, Victor Odhner wrote:

> Is there anything available in the Linux world that
> resembles ZoneAlarm's per-application outbound
> firewall? Does iptables know what application is
> sourcing an outbound connection? Is it technically
> feasible to insert that kind of hook?

I doubt it. It's pretty much a waste of time.

You can have netfilter (iptables) log info about packets. Say anything
with a SYN set. Then have another program following that log.

I used to monitor worm activity outside my firewall, but the last two
ISPs have been blocking these ports so there's been no activity for
years. The only activity I still see is bittorent packets. 

    -Paul


---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Re: Ann: East Side Meeting, Thursday, May 11thRe: Ann: East Side Meeting, Thursday, May 11th->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)