Re: filtering packets based on the pathname of the sending/receiving application

[Alexander Samad <alex@samad.com.au>]

[-- Attachment #1: Type: text/plain, Size: 1405 bytes --]

On Mon, Aug 30, 2004 at 08:54:42PM +0200, Jose Maria Lopez wrote:
> El jue, 26 de 08 de 2004 a las 19:02, Sonny (Sechang) Son escribi??:
> > Hi,
> > 
> > sorry if this has been answered already.
> > 
> > Is there any way to block/allow traffic generated by or toward a spcific
> > application. I want to block/allow traffics based on the full pathname of
> > the application.
> > 
> > thank you.

The is a patch in patch o matic called owner, which lets you specify the
application and matches agains that.


> 
> Wouldn't it be easier to study the ports this application use and use
> them to generate your rules. I think what you want it's not possible,
> you can't discriminate traffic using the path or name of the executable,
> but I think you can do it with the user that runs the program, using a
> patch from patch-o-matic, I don't know if this can suit you.
> 
> -- 
> Jose Maria Lopez Hernandez
> Director Tecnico de bgSEC
> jkerouac@bgsec.com
> bgSEC Seguridad y Consultoria de Sistemas Informaticos
> http://www.bgsec.com
> ESPA??A
> 
> The only people for me are the mad ones -- the ones who are mad to live,
> mad to talk, mad to be saved, desirous of everything at the same time,
> the ones who never yawn or say a commonplace thing, but burn, burn, burn
> like fabulous yellow Roman candles.
>                 -- Jack Kerouac, "On the Road"
> 
> 
> 

[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]