Hi this is Rohit frm Delhi India ... Well I am can say a starter in Linux security .. I hv a problem about how to block "limewire" and "kazaa" softwares .. I tried a lot but as far as I gt the conclusion is this that Limewire cud b blocked by blocking it's URL but i hv truly no idea as to how block the Kazaa software ..

Please suggest

Rohit

Welcome.
I think this is not the right forum to ask or answer questions so I'll be brief: My experience tells me that the best way to block Limewire and particularly Kazaa, is using iptables rules based on layer7 packet classifier. You should introduce yourself in kernel patching, netfilter and protocol definitions.

Welcome!

Moved: This thread is more suitable in Linux-Networking and has been moved accordingly to help your thread/question get the exposure it deserves.

As i earlier asked about network setup, you gotta give us the idea/layout of your network atleast. How does exactly your clients(specially the one running kazaa) get connected to internet ??

Do you use squid or any other proxy server in b/w ???

There are many ways you can look into for blocking kazaa, starting from
* Using SQUID (as a proxy server wont let you establish a peer to peer connection; afaik)
* You should dump the packets when you see the initial communication of kazaa to its server & any peer.. This may help in blocking it with iptables.
* I have heard that you can use
But you got to specify them at FORWARD (if you are not NATing packets)
* The best would be using domain policies as anyhow if any user can download & install kazaa at its desktop.. ITs even a bigger threat to your security.
* The modest of them all is that you should let your users know that this is not as per the corporate policy of your company & you should avoid doing the practice of using these p2p programs. Make them understand that this brings so many security flaws to their company & their desktops.