ZoneAlarm-type firewall for Linux?

Alexander Henry alexanderhenry at cox.net
Tue May 9 22:28:00 MST 2006


---- "Jeremy C. Reed" <reed at reedmedia.net> wrote: 
> > I do know that there's a program out there named "AppArmor" that may
> > provide the protection you are looking for. It's designed to interact
> > directly with the kernel and allows you to define what processes can do
> > what...etc. You can set a default policy to disallow every process from
> > network access and then allow only certain processes to access the
> > network.
> 
> Another program that does that is systrace found on some BSD systems. It 
> provides "Interactive Policy Generation for System Calls". The systrace 
> for Linux webpage is at 
> http://www.citi.umich.edu/u/provos/systrace/linux.html but doesn't seem to 
> be up-to-date or maintained (on Linux).
> 
> An alternative is selinux. I don't know best docs, but here are some 
> links:
>   
> Red Hat Enterprise Linux 4: Red Hat SELinux Guide: 2.9. Policy Macros
> http://www.linuxtopia.org/online_books/redhat_selinux_guide/rhlcommon-section-0053.html
> 
> Installing SELinux on Fedora / RedHat
> http://www.crypt.gen.nz/selinux/install_fedora.html 
> 
> (selinux might already be integrated/installed on your Linux of choice.)
> 
> Also iptables can do filtering by user (UID) or process ID (PID). (See -m 
> owner extension.)
> 
> You can probably find an interactive tools for viewing and managing 
> iptables connections by UID or process. (Search for ctview as one 
> example.)
> 
> Also look at "Filter based on program" at
> http://michael.toren.net/slides/ipqueue/slide017.html. A python interface 
> and perl module are available for "ipqueue".
> 
> Have fun!
> 
>  Jeremy C. Reed
> 
> echo '9,J8HD,fDGG8B@?:536FC5=8 at I;C5?@H5B0D at 5GBIELD54DL>@8L?:5GDEJ8LDG1' |\
> sed ss,s50EBsg | tr 0-M 'p.wBt SgiIlxmLhan:o,erDsduv/cyP'
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change  you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss



More information about the PLUG-discuss mailing list