Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm looking for a firewall that not only functions as a incomming firewall, but will allow me to pick and choose what programs may access the internet. Basically like what zonealarm for windows lets you do.
I'm not familiar with the GUI's out there, but I do know iptables allows you to filter OUTGOING packets by PID, UID, and the name of the process sending it. An example rule would be
Code:
$IPT -A OUTPUT -p udp --dport 33434:33523 \
-m owner --cmd-owner traceroute \
-m state --state NEW,ESTABLISHED \
-j ACCEPT
This rule allows only the program traceroute to go out by using -m owner --cmd-owner traceroute
I'm not familiar with the GUI's out there, but I do know iptables allows you to filter OUTGOING packets by PID, UID, and the name of the process sending it. An example rule would be
Code:
$IPT -A OUTPUT -p udp --dport 33434:33523 \
-m owner --cmd-owner traceroute \
-m state --state NEW,ESTABLISHED \
-j ACCEPT
This rule allows only the program traceroute to go out by using -m owner --cmd-owner traceroute
I would say it's all greek to me, but I'm not even sure that's greek lol
Me =
I'm sorry guy, iptables is a built-in firewall system that you can use to create custom rules from the command line, or from a script. There are many applications that provide GUI's to do this for you. There are also many tutorials available, and posts regarding iptables if you are interested. As far as the GUI's go, they should allow you to filter traffic going out of your cpu as well as coming in. I'm sure there are many readers who know more about the available GUI's out there, hopefully one can add a post to point you in the right direction.
on the subject of firestarter, I installed that a while ago, and later I rebooted, and it was in my services that start at bootup, now with it active, the computer acted horrible, half the things open would freeze, I lost the use of the middle mouse button and I while in mozilla, I could click my bookmarks and use the menus at the top, trying to interact with anything in the actual page (links, etc.) didn't work and while any browser was open, nothing else would work until it was closed (which in cludes the taskbar thing at the bottom, and ksystemguard so I couldn't close it that way either)
Needless to say I disabled the firestarted service.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.