LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 12-31-2003, 12:56 AM   #1
Viper168
Member
 
Registered: Oct 2003
Distribution: Gentoo
Posts: 54

Rep: Reputation: 15
program-by-program firewall?


I'm looking for a little help on locating a suitable firewall... I've tried guarddog (stopped all traffic until I stopped it) and I've tried firestarter (worked reasonably, but crashed a lot).

What I'd really like though is a firewall that blocks all traffic except for that between the internet and programs I approve. I'm not speaking of blocking all ports, and only opening a few, I'm speaking of only allowing internet access for specific programs that I choose to allow. A GUI is rather important also....

I'm not sure if one exists, but if one does, might someone be able to tell me?
 
Old 12-31-2003, 06:35 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974
that's not possible, the name of the end application is not present in tcp/ip packages....
 
Old 12-31-2003, 06:55 PM   #3
kev82
Senior Member
 
Registered: Apr 2003
Location: Lancaster, England
Distribution: Debian Etch, OS X 10.4
Posts: 1,263

Rep: Reputation: 50
i dont know if such a kernel module exists but would it not be possible to hook into the socket system call and refuse to create INET sockets unless the callers pid is in an allowed list.
 
Old 01-04-2004, 01:32 PM   #4
kev82
Senior Member
 
Registered: Apr 2003
Location: Lancaster, England
Distribution: Debian Etch, OS X 10.4
Posts: 1,263

Rep: Reputation: 50
im just in the middle of configuring a 2.6 kernel and i have noticed the following module that should be of interest to you

CONFIG_IP_NF_MATCH_OWNER, it allows you to identify packets by user, group, pid, etc
 
Old 01-04-2004, 05:50 PM   #5
stickman
Senior Member
 
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552

Rep: Reputation: 53
Quote:
Originally posted by acid_kewpie
that's not possible, the name of the end application is not present in tcp/ip packages....
I think he's looking for something similar to a Windows-type personal firewall (like ZoneAlarm) where the firewall keeps track of the application sending the packets. I did a quick search of my site and I turned up one candidate- FieryFilter. I did see references to something called Pyrewall; however, I couldn't quickly find any code to download. I've never tried either one so I can't speak as to how well they work.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Opening a port for a specific program using the Firewall (SUSE 9.3) Jongi SUSE / openSUSE 4 10-30-2005 05:18 AM
Total recovery: Which program? ghost4linux, YaST2? Best drive imaging program? lagu2653 Linux - Software 1 06-20-2005 02:44 PM
A Firewall and an anti-virus program Gins Linux - General 8 04-19-2005 09:23 AM
Key bindings program (custom pasting, program execution, etc.) jrdioko Linux - Software 2 02-05-2005 10:09 PM
Gtk-Warning but program still works... I close konsole, program closes Laptop2250 Linux - Software 2 11-15-2003 12:18 AM


All times are GMT -5. The time now is 06:36 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration