Application-level filtering? (e.g. Little Snitch)
I've come back to Linux/Slack after quite a while away using Mac systems. One thing I've become accustomed to is the program "Little Snitch", which is basically an application-level outbound traffic firewall. So if I install some application and it wants to connect out somewhere, Little Snitch pops up a window and asks me if I want to allow that connection or not (and you can set rules based on domains, ports, timeframes, etc). My understanding is that iptables works on a lower level than this, and I've not had any luck finding something comparable to Little Snitch on Linux.
I'm guessing there's no nice GUI app for this, but how would one go about blacklisting applications from connecting to the network in general, and then whitelisting whatever is necessary? Is there anything more straightforward than going full SELinux/AppArmor?
|