Re: forbid internet access to an application?
- From: Michael Heiming <michael+USENET@xxxxxxxxxxxxxx>
- Date: Sat, 26 May 2007 21:48:00 +0200
In comp.os.linux.networking Pascal Hambourg <boite-a-spam@xxxxxxxxxxxxxxx>:
Hello,
Allen Kistler a écrit :
The netfilter owner module can accomplish this objective (according to
the man page, though I've never used it). The switch you want is
--cmd-owner, however the man page also states that cmd matching is
broken on SMP machines.
Support for the --pid-owner, --sid-owner and --cmd-owner options has
been removed from kernel 2.6.14 and later versions.
Interesting, seems my man page is broken and the OP back to the
script I had already recommended. ;-)
[NETFILTER]: Remove tasklist_lock abuse in ipt{,6}owner
Rip out cmd/sid/pid matching since its unfixable broken and stands in
the way of locking changes to tasklist_lock.
--
Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94)
mail: echo zvpunry@xxxxxxxxxx | perl -pe 'y/a-z/n-za-m/'
#bofh excuse 338: old inkjet cartridges emanate barium-based
fumes
.
- Follow-Ups:
- Re: forbid internet access to an application?
- From: Pascal Hambourg
- Re: forbid internet access to an application?
- References:
- forbid internet access to an application?
- From: lucatrv
- Re: forbid internet access to an application?
- From: Allen Kistler
- Re: forbid internet access to an application?
- From: Pascal Hambourg
- forbid internet access to an application?
- Prev by Date: Re: forbid internet access to an application?
- Next by Date: Re: forbid internet access to an application?
- Previous by thread: Re: forbid internet access to an application?
- Next by thread: Re: forbid internet access to an application?
- Index(es):
