* filtering packets based on the pathname of the sending/receiving application @ 2004-08-26 17:02 Sonny (Sechang) Son 2004-08-30 18:54 ` Jose Maria Lopez 0 siblings, 1 reply; 4+ messages in thread From: Sonny (Sechang) Son @ 2004-08-26 17:02 UTC (permalink / raw) To: netfilter Hi, sorry if this has been answered already. Is there any way to block/allow traffic generated by or toward a spcific application. I want to block/allow traffics based on the full pathname of the application. thank you. ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: filtering packets based on the pathname of the sending/receiving application 2004-08-26 17:02 filtering packets based on the pathname of the sending/receiving application Sonny (Sechang) Son @ 2004-08-30 18:54 ` Jose Maria Lopez 2004-08-30 22:05 ` Alexander Samad 0 siblings, 1 reply; 4+ messages in thread From: Jose Maria Lopez @ 2004-08-30 18:54 UTC (permalink / raw) To: netfilter@lists.netfilter.org El jue, 26 de 08 de 2004 a las 19:02, Sonny (Sechang) Son escribió: > Hi, > > sorry if this has been answered already. > > Is there any way to block/allow traffic generated by or toward a spcific > application. I want to block/allow traffics based on the full pathname of > the application. > > thank you. Wouldn't it be easier to study the ports this application use and use them to generate your rules. I think what you want it's not possible, you can't discriminate traffic using the path or name of the executable, but I think you can do it with the user that runs the program, using a patch from patch-o-matic, I don't know if this can suit you. -- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac@bgsec.com bgSEC Seguridad y Consultoria de Sistemas Informaticos http://www.bgsec.com ESPAÑA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road" ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: filtering packets based on the pathname of the sending/receiving application 2004-08-30 18:54 ` Jose Maria Lopez @ 2004-08-30 22:05 ` Alexander Samad 2004-08-31 19:52 ` Jose Maria Lopez 0 siblings, 1 reply; 4+ messages in thread From: Alexander Samad @ 2004-08-30 22:05 UTC (permalink / raw) To: netfilter [-- Attachment #1: Type: text/plain, Size: 1405 bytes --] On Mon, Aug 30, 2004 at 08:54:42PM +0200, Jose Maria Lopez wrote: > El jue, 26 de 08 de 2004 a las 19:02, Sonny (Sechang) Son escribi??: > > Hi, > > > > sorry if this has been answered already. > > > > Is there any way to block/allow traffic generated by or toward a spcific > > application. I want to block/allow traffics based on the full pathname of > > the application. > > > > thank you. The is a patch in patch o matic called owner, which lets you specify the application and matches agains that. > > Wouldn't it be easier to study the ports this application use and use > them to generate your rules. I think what you want it's not possible, > you can't discriminate traffic using the path or name of the executable, > but I think you can do it with the user that runs the program, using a > patch from patch-o-matic, I don't know if this can suit you. > > -- > Jose Maria Lopez Hernandez > Director Tecnico de bgSEC > jkerouac@bgsec.com > bgSEC Seguridad y Consultoria de Sistemas Informaticos > http://www.bgsec.com > ESPA??A > > The only people for me are the mad ones -- the ones who are mad to live, > mad to talk, mad to be saved, desirous of everything at the same time, > the ones who never yawn or say a commonplace thing, but burn, burn, burn > like fabulous yellow Roman candles. > -- Jack Kerouac, "On the Road" > > > [-- Attachment #2: Digital signature --] [-- Type: application/pgp-signature, Size: 189 bytes --] ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: filtering packets based on the pathname of the sending/receiving application 2004-08-30 22:05 ` Alexander Samad @ 2004-08-31 19:52 ` Jose Maria Lopez 0 siblings, 0 replies; 4+ messages in thread From: Jose Maria Lopez @ 2004-08-31 19:52 UTC (permalink / raw) To: netfilter@lists.netfilter.org El mar, 31 de 08 de 2004 a las 00:05, Alexander Samad escribió: > On Mon, Aug 30, 2004 at 08:54:42PM +0200, Jose Maria Lopez wrote: > > El jue, 26 de 08 de 2004 a las 19:02, Sonny (Sechang) Son escribi??: > > > Hi, > > > > > > sorry if this has been answered already. > > > > > > Is there any way to block/allow traffic generated by or toward a spcific > > > application. I want to block/allow traffics based on the full pathname of > > > the application. > > > > > > thank you. > > The is a patch in patch o matic called owner, which lets you specify the > application and matches agains that. We didn't know. Thanks for the correction. -- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac@bgsec.com bgSEC Seguridad y Consultoria de Sistemas Informaticos http://www.bgsec.com ESPAÑA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road" ^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2004-08-31 19:52 UTC | newest] Thread overview: 4+ messages (download: mbox.gz follow: Atom feed -- links below jump to the message on this page -- 2004-08-26 17:02 filtering packets based on the pathname of the sending/receiving application Sonny (Sechang) Son 2004-08-30 18:54 ` Jose Maria Lopez 2004-08-30 22:05 ` Alexander Samad 2004-08-31 19:52 ` Jose Maria Lopez
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.