Re: forbid internet access to an application?

In comp.os.linux.networking David M <NOSPAM@xxxxxxxxxx>:
On Sat, 26 May 2007 15:02:16 +0000, lucatrv rearranged some electrons to
form:

Hi, I'd like to ask if it's possible to restrict access to the internet to
an application (i.e. the list of files which belongs to a package).
Under windows there are plenty of firewall programs, which make you decide
if an application should access the internet or not.
I looked on internet and didn't find anything similar under linux. For what
I could understand, neither apparmor or selinux can do that...

Thank you.


man hosts.deny

This is thought to restrict incoming connections not outgoing. A
typical Linux installation isn't infested with spy and malware,
so there might not be demand for such an application?

Though one could run some cron job, checking for apps opening
outgoing connections and kill them if they can't be found in a
given file with allowed apps. I suppose it shouldn't take more
then 20 minutes to stick a halfway working script together.

If there is no such thing you want, consider writing your own
and put the source online, so others might use and perhaps
improve it.

--
Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94)
mail: echo zvpunry@xxxxxxxxxx | perl -pe 'y/a-z/n-za-m/'
#bofh excuse 50: Change in Earth's rotational speed
.