Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm not sure about on a program basis, but iptables is a firewall that you can set rules for ports. If you google a bit, you'll find tuts on setting up iptables as well as some graphical frontends.
guardog can do per app but i think it only does the ones pre-programmed, you can always just use iptables or firestarter (a GUI frontend) and block the ports it is transmitting on
I assume you're talking about something like Zone Alarm does on Windows. I don't think Firestarter or Guarddog will do it, and iptables by itself is pretty strenuous unless you're fairly sophisticated. You might check out Shorewall. I looked it over at one point, but decided it was more advanced than my needs. It did appear to me that it might do that, though.
Shorewall uses IPTables also. There is nothing for linux like Zone Alarm or other Windows based firewalls. If you really want a secure network, just close all your ports in IPTables and only open up the ones you really need. IE only open up HTTP (port 80) and HTTPS (port 443). Then you can open up one port at a time when needed. Its not as pretty, but trust me, it works wonders.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.